Docker Forensics Toolkit Logo

Docker Forensics Toolkit

Visit Website

This toolkit allows for post-mortem analysis of Docker runtime environments using forensic HDD copies of the docker host system. Features include mounting forensic images, displaying status information, listing images and containers, showing image history and configuration, displaying container logs, mounting container file systems, and extracting file system metadata for creating timelines.

FEATURES

ALTERNATIVES

RegRippy is a modern Python 3 alternative to RegRipper for extracting data from Windows registry hives.

A simple Golang application for storing NIST National Software Reference Library Reference Data Set (NSRL RDS) with md5 and sha1 hash lookup searches.

Modern digital forensics and incident response platform with comprehensive tools.

Hoarder is a tool to collect and parse windows artifacts.

Review of various MFT parsers used in digital forensics for analyzing NTFS file systems.

Python script to parse macOS MRU plist files into human-friendly format

Digital investigation tool for extracting forensic data from computers and managing investigations.

Educational CTF-styled challenges for Memory Forensics.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved