Orochi Logo

Orochi

0
Free
Visit Website

Orochi is an open source framework for collaborative forensic memory dump analysis. Using Orochi, you and your collaborators can easily organize your memory dumps and analyze them all at the same time. Orochi architecture uses Volatility 3, saves Volatility results in ElasticSearch, distributes loads among nodes using Dask, uses Django as frontend, uses Postgresql to save users and analysis metadata such as status and errors, uses MailHog to manage the users registration emails, and uses Redis for caching.

FEATURES

ALTERNATIVES

Open Source computer forensics platform with modular design for easy automation and scripting.

A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys.

Analyse a forensic target to find and report files found and not found in hashlookup CIRCL public service.

A reliable end-to-end DFIR solution for boosting cyber incident response and forensics capacity.

A collection of Mac OS X and iOS forensics resources with a focus on artifact collection and collaboration.

A portable volatile memory acquisition tool for Linux.

LiME is a Linux Memory Extractor tool for acquiring volatile memory from Linux and Linux-based devices, including Android, with features like full memory captures and minimal process footprint.

A Mac OS X forensic utility for ensuring correct forensic procedures during disk imaging.