Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats. Developed by Fox-IT (part of NCC Group), Dissect is a meta package that installs all other Dissect modules with the right combination of versions. It is an incident response framework built from various parsers and implementations of file formats, enabling you to work with tools like target-query and target-shell to access forensic artefacts such as Runkeys, Prefetch files, and Windows Event Logs in a singular way, regardless of the underlying container, filesystem, or Operating System structure/combination.
FEATURES
ALTERNATIVES
DFIR ORC Documentation provides detailed instructions for setting up the build environment and deploying the tool.
A tool for restoring defocused and blurred images with various deconvolution techniques and fast processing capabilities.
WinSearchDBAnalyzer can parse and recover records in Windows.edb, providing detailed insights into various data types.
A reverse engineering framework with a focus on usability and code cleanliness
A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.
A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.
A command-line utility and Python package for mounting and unmounting various disk image formats with support for different volume systems and filesystems.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.