From f3831ad9cd49a2b1f8f2b9d78392050afbeb3774 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@noreply.users.github.com>
Date: Fri, 27 Sep 2019 16:23:58 +0700
Subject: [PATCH] Add DFIR ORC

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index ac3c848..92dde32 100644
--- a/README.md
+++ b/README.md
@@ -516,6 +516,10 @@ This repository is created as an online bookmark for useful links, resources and
         <td><a href="https://github.com/davehull/Kansa">davehull/Kansa</a></td>
         <td>A Powershell incident response framework</td>
     </tr>
+    <tr>
+        <td><a href="https://dfir-orc.github.io/">DFIR ORC</a></td>
+        <td>DFIR ORC, where ORC stands for “Outil de Recherche de Compromission” in French, is a collection of specialized tools dedicated to reliably parse and collect critical artefacts such as the MFT, registry hives or event logs. It can also embed external tools and their configurations.</td>
+    </tr>
     <tr>
         <td><a href="https://info.digitalguardian.com/wingman.html">DG Wingman</a></td>
         <td>DG Wingman is a free community Windows tool designed to aid in the collection of forensic evidence in order to properly investigate and scope an intrusion.</td>