Digital Forensics and Incident Response Tools
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
Browse 524 digital forensics and incident response tools
FEATURED
USE CASES
AI-driven autonomous security investigation agent by Legion Security.
AI-powered malware analysis & threat research platform with chat interface.
HxD is a freeware hex editor and disk editor with advanced features for editing files, memory, and disks.
A tool for analyzing TCP packet traces with color support.
Java decompiler for modern Java features up to Java 14.
GUI-based memory forensic capture tool for cyber forensics and cyber crime investigation.
Online platform for image steganography analysis
Digital investigation tool for extracting forensic data from computers and managing investigations.
A community-driven public malware repository providing access to malware samples, tools, and resources for the cybersecurity community.
SWFTools is a collection of utilities for working with Adobe Flash files, including tools for converting PDFs, images, audio, and video files to SWF format.
A super-simple, modern framework for organizing and automating cybersecurity tasks.
A standardized framework for describing and classifying cybersecurity incidents
A tool to verify the integrity of PNG, JNG, and MNG files and extract detailed information about the image.
StegSolve is a steganography analysis tool with image analysis features.
XMLStarlet offers a suite of command line utilities for manipulating and querying XML documents.
A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.
A javascript malware analysis tool with backend code execution.
Revelo is an experimental Javascript deobfuscator tool with features to analyze and deobfuscate Javascript code.
Studying Android malware behaviors through Information Flow monitoring techniques.
AI-native DFIR platform cutting breach recovery time by 75% via automation.
Cybersecurity & digital forensics software for malware detection and DFIR.
Suite of data forensics, migration, backup, and cybersecurity tools/services.
Digital Forensics and Incident Response Tools FAQ
Common questions about Digital Forensics and Incident Response tools, selection guides, pricing, and comparisons.
Essential DFIR tools include: disk imaging and analysis (for examining file systems, deleted files, and artifacts), memory forensics (analyzing RAM for malware, credentials, and running processes), network forensics (capturing and analyzing packet data), log analysis and timeline reconstruction, and malware analysis (static and dynamic analysis of malicious files). Many investigators also use cloud-specific forensics tools for AWS/Azure/GCP.
