kube-forensics allows a cluster administrator to create checkpoint snapshots of the state of running pods for later off-line analysis by dumping the current state of a running pod and all its containers, enabling security professionals to perform detailed forensic analysis in the event of a security breach.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
Exterro is a data risk management platform that optimizes e-discovery, digital forensics, and cybersecurity compliance operations.
A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes.
Stegextract is a Bash script that extracts hidden files and strings from images, supporting PNG, JPG, and GIF formats.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.
TestDisk is a free data recovery software that can recover lost partitions and undelete files from various file systems.
A digital artifact extraction framework for extracting data from volatile memory (RAM) samples, providing visibility into the runtime state of a system.
A library and set of tools for accessing and analyzing storage media devices and partitions for forensic analysis and investigation.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.