Automated pipeline for generating forensic timelines from Magnet Response collections.
-
Updated
Nov 6, 2025 - PowerShell
#
dfir-automation
Here are 82 public repositories matching this topic...
A curated list of tools for incident response. With repository stars⭐ and forks🍴
security list awesome incident-response dfir awesome-list digital-forensics incident incident-management incident-reports incidents incident-response-tooling dfir-automation digitalforensics
-
Updated
Nov 6, 2025
A post-mortem analysis tool for raw disk/partition images
-
Updated
Oct 31, 2025 - Python
MAES: M365 Analyzer & Extractor Suite Po
-
Updated
Oct 30, 2025 - JavaScript
Extract and normalize information from forensics artifacts
-
Updated
Oct 28, 2025 - Python
Simple Imager has been created for performing live acquisition of Windows based systems in a forensically sound manner
forensics dfir digital-forensics blueteam memory-dump memory-dumper forensics-101 dfir-automation digital-forensics-incident-response ir-diag forensics-tools forensic-imager
-
Updated
Oct 28, 2025 - Batchfile
MalNote – an automated malware triage and intelligence tool that scans files, queries multiple threat intelligence sources (OTX, ThreatFox, MalwareBazaar, VirusTotal), and generates a detailed Markdown analysis note enriched with AI-powered insights from Gemini.
-
Updated
Oct 27, 2025 - Python
Collaborative Forensic Collections Manager
-
Updated
Oct 20, 2025 - Python
Minimalist Collaborative Digital Logbook
-
Updated
Oct 20, 2025 - TypeScript
Unified cases, seamless integrations
-
Updated
Oct 20, 2025 - TypeScript
Minimalist Collaborative Malware DB Management
-
Updated
Oct 20, 2025 - Python
osquery_hunter is a lightweight, Python-based triage helper for Windows systems. It uses osquery to enumerate running processes, network sockets, and signatures — helping analysts quickly spot unsigned or suspicious binaries. Ideal for DFIR, incident response, and blue-team investigations in environments without full EDR coverage.
-
Updated
Oct 18, 2025 - Python
CLI generator for Velociraptor offline collector
-
Updated
Oct 10, 2025 - Python
Exif and metadata dumper/searcher. PDF,JPG,PNG,EXE and a lot more supported.
-
Updated
Sep 29, 2025 - Go
Orchestration Software for Incident Response
-
Updated
Nov 4, 2025 - Python
Outil de triage automatisé de différents types de collectes d'artefacts.
-
Updated
Sep 22, 2025 - JavaScript
🛡️⚔️ Curated GitHub repos for Defensive & Offensive Cyber Tradecraft
automation threat-hunting threat-intelligence cyberops cloudflare-workers security-operations detection-engineering dfir-automation cyber-tools
-
Updated
Oct 28, 2025 - TypeScript
Recover and decode unsaved Windows Notepad binary files into readable notes
-
Updated
Sep 5, 2025 - Python
Security incident response case studies demonstrating log analysis, threat hunting, and forensic investigation using Elastic Stack, TheHive, and MITRE ATT&CK
elasticsearch kibana incident-response dfir cybersecurity threat-hunting soc blue-team dfir-automation soc-analyst
-
Updated
Aug 29, 2025
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
security automation tools powershell reporting incident-response dfir infosec cyber soc cyber-security ir mdr digital-forensic dfir-automation
-
Updated
Aug 17, 2025 - PowerShell
Improve this page
Add a description, image, and links to the dfir-automation topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dfir-automation topic, visit your repo's landing page and select "manage topics."