What is the pricing for PSRecon?

PSRecon is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/gfoss/PSRecon/ for download and installation instructions.

What are alternatives to PSRecon?

Popular alternatives to PSRecon include: 1. Kanvas - An open-source incident response case management tool that provides visualization, threat intelligence lookups, and security framework mapping in a unified workspace. (Free) 2. Red Hand Analyzer - Red Hand Analyzer is an online tool that provides automated behavioral analysis of PCAP files to detect malicious network activities and security vulnerabilities without decrypting traffic content. (Free) 3. iLEAPP - A forensic analysis tool that extracts and parses logs, notifications, and system information from iOS/iPadOS devices and backups. (Free) 4. HexPrism - HexPrism is a fast, privacy-first hex editor built for CTFs and digital forensics. (Free) 5. Axence ConnectPro - Remote access and IT support tool for workstation management and diagnostics (Commercial) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use PSRecon?

PSRecon is for security teams and organizations that need Incident Response, Data Acquisition, Endpoint Security, Powershell. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

What is the pricing for PSRecon?

PSRecon is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/gfoss/PSRecon/ for download and installation instructions.

What are alternatives to PSRecon?

Popular alternatives to PSRecon include: 1. Kanvas - An open-source incident response case management tool that provides visualization, threat intelligence lookups, and security framework mapping in a unified workspace. (Free) 2. Red Hand Analyzer - Red Hand Analyzer is an online tool that provides automated behavioral analysis of PCAP files to detect malicious network activities and security vulnerabilities without decrypting traffic content. (Free) 3. iLEAPP - A forensic analysis tool that extracts and parses logs, notifications, and system information from iOS/iPadOS devices and backups. (Free) 4. HexPrism - HexPrism is a fast, privacy-first hex editor built for CTFs and digital forensics. (Free) 5. Axence ConnectPro - Remote access and IT support tool for workstation management and diagnostics (Commercial) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use PSRecon?

PSRecon is for security teams and organizations that need Incident Response, Data Acquisition, Endpoint Security, Powershell. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

PSRecon

A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.

488

Security Operations Open Source

Incident Response Data Acquisition Endpoint Security Powershell

Visit website

Compare

PSRecon

A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.

Security Operations•Digital Forensics and Incident Response

Open Source

Incident Response Data Acquisition Endpoint Security Powershell

488stars

GitHub Stars

29 Jul

Last commit

Visit Website

Updated 30 Dec 25

Compare

Explore Security Operations 24 Alternatives Compare Stacks Market Map Explore All Tools

APIBuild market maps, track competitors, monitor vendorsRequest API Access

PSRecon Description

PSRecon is a PowerShell-based incident response and live forensic data acquisition tool that gathers data from a remote Windows host, organizes the data into folders, hashes all extracted data, and sends the data to the security team. It also includes endpoint lockdown functionality, allowing users to disable an active directory account or quarantine the host until IT/Security can respond. The tool provides a detailed report that is self-contained, making it easy to share. It can be integrated with the organization's Active Defense frameworks to automate rapid forensic data acquisition and lock down the endpoint. PSRecon can be run on local or remote hosts, and offers various options for enabling PSRemoting and Unrestricted PowerShell Execution.

PSRecon Description

PSRecon FAQ

Common questions about PSRecon including features, pricing, alternatives, and user reviews.

PSRecon is A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.. It is a Security Operations solution designed to help security teams with Incident Response, Data Acquisition, Endpoint Security.

Have more questions? Browse our categories or search for specific tools.