Docker Forensics Toolkit Logo

Docker Forensics Toolkit

Visit Website

This toolkit allows for post-mortem analysis of Docker runtime environments using forensic HDD copies of the docker host system. Features include mounting forensic images, displaying status information, listing images and containers, showing image history and configuration, displaying container logs, mounting container file systems, and extracting file system metadata for creating timelines.

FEATURES

ALTERNATIVES

A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.

A console program for file recovery through data carving.

Comprehensive suite for advanced file analysis and software supply chain security.

Windows event log fast forensics timeline generator and threat hunting tool.

iOS Mobile Backup Xtractor tool for extracting iOS backups.

Orochi is a collaborative forensic memory dump analysis framework.

A tool for restoring defocused and blurred images with various deconvolution techniques and fast processing capabilities.

A Python 2.x tool for memory analysis on Mac OS X systems with support for various OS versions and memory image export capabilities.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved