Dissect Logo

Dissect

0
Free
Visit Website

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats. Developed by Fox-IT (part of NCC Group), Dissect is a meta package that installs all other Dissect modules with the right combination of versions. It is an incident response framework built from various parsers and implementations of file formats, enabling you to work with tools like target-query and target-shell to access forensic artefacts such as Runkeys, Prefetch files, and Windows Event Logs in a singular way, regardless of the underlying container, filesystem, or Operating System structure/combination.

FEATURES

ALTERNATIVES

A tool with advanced filtering capabilities for analyzing events based on time, path, weekday, and date.

Scripts to automate the process of enumerating a Linux system through a Local File Inclusion (LFI) vulnerability.

A reconnaissance tool for GitHub organizations

A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.

Open source digital forensics tools for analyzing disk images and recovering files.

An open source digital forensic tool for processing and analyzing digital evidence with high performance and multiplatform support.

Turbinia is an open-source framework for automating the running of common forensic processing tools to help with processing evidence in the Cloud.

An open source format for storing digital evidence and data, with a C/C++ library for creating, reading, and manipulating AFF4 images.

PINNED