From dcfadb22f179f3ce4ea92a90848729ae520c79a9 Mon Sep 17 00:00:00 2001 From: pe3zx Date: Mon, 5 Feb 2018 21:50:21 +0700 Subject: [PATCH] [Tools][DFIR]: Add google/grr --- README.md | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 0499399..4e6dd6e 100644 --- a/README.md +++ b/README.md @@ -804,6 +804,14 @@ My curated list of awesome links, resources and tools ANSSI-FR/bits_parser Extract BITS jobs from QMGR queue and store them as CSV records + + google/grr + GRR is a python client (agent) that is installed on target systems, and python server infrastructure that can manage and talk to clients. + + + google/rekall + The Rekall Framework is a completely open collection of tools, implemented in Python under the Apache and GNU General Public License, for the extraction and analysis of digital artifacts computer systems. + intezer/linux-explorer Easy-to-use live forensics toolbox for Linux endpoints @@ -840,10 +848,6 @@ My curated list of awesome links, resources and tools refractionPOINT/limacharlie LC is an Open Source, cross-platform (Windows, MacOS, Linux ++), realtime Endpoint Detection and Response sensor. The extra-light sensor, once installed on a system provides Flight Data Recorder type information (telemetry on all aspects of the system like processes, DNS, network IO, file IO etc). - - google/rekall - The Rekall Framework is a completely open collection of tools, implemented in Python under the Apache and GNU General Public License, for the extraction and analysis of digital artifacts computer systems. - The Sleuth Kit sleuthkit.org is the official website for The Sleuth Kit®, Autopsy®, and other open source digital investigation tools. From here, you can find documents, case studies, and download the latest versions of the software.