From b9d6cff8a9193d779154df21d949cce09ad6b7c2 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreplay.github.com>
Date: Mon, 5 Feb 2018 21:49:15 +0700
Subject: [PATCH] [Tools][DFIR]: Add google/rekall

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 9386c27..0499399 100644
--- a/README.md
+++ b/README.md
@@ -840,6 +840,10 @@ My curated list of awesome links, resources and tools
         <td><a href="https://github.com/refractionPOINT/limacharlie">refractionPOINT/limacharlie</a></td>
         <td>LC is an Open Source, cross-platform (Windows, MacOS, Linux ++), realtime Endpoint Detection and Response sensor. The extra-light sensor, once installed on a system provides Flight Data Recorder type information (telemetry on all aspects of the system like processes, DNS, network IO, file IO etc).</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/google/rekall">google/rekall</a></td>
+        <td>The Rekall Framework is a completely open collection of tools, implemented in Python under the Apache and GNU General Public License, for the extraction and analysis of digital artifacts computer systems.</td>
+    </tr>
     <tr>
         <td><a href="https://www.sleuthkit.org/">The Sleuth Kit</a></td>
         <td>sleuthkit.org is the official website for The Sleuth Kit®, Autopsy®, and other open source digital investigation tools. From here, you can find documents, case studies, and download the latest versions of the software.</td>