kube-forensics
kube-forensics allows a cluster administrator to create checkpoint snapshots of the state of running pods for later off-line analysis by dumping the current state of a running pod and all its containers, enabling security professionals to perform detailed forensic analysis in the event of a security breach.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A read-only FUSE driver that enables Linux systems to mount and access Apple File System (APFS) volumes, including encrypted and fusion drives.
Accessing databases stored on a machine by the Chrome browser and dumping URLs found.
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
Recreates the File/Directory tree structure from an extracted $MFT file with detailed record mapping and analysis capabilities.
Generate comprehensive reports about Windows systems with detailed system, security, networking, and USB information.
A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.
A library to access the Expert Witness Compression Format (EWF) for digital forensics and incident response.
A command-line tool for extracting detailed information from JPEG files, including image dimensions, compression, and metadata.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.