Skadi is a free, open source collection of tools that enables the collection, processing, and advanced analysis of forensic artifacts and images. It works on MacOS, Windows, and Linux machines, scaling effectively on various platforms including laptops, desktops, servers, and the cloud. Skadi can be installed on top of hardened/gold disk images. To get started, download the latest release available in OVA, Vagrant, and Signed Installer formats. Installation instructions are provided for Docker, Vagrant, OVA, and Signed Installer. Skadi Portal provides easy access to the tools with default credentials: Username: skadi, Password: skadi.
Common questions about Skadi including features, pricing, alternatives, and user reviews.
Skadi is A free, open source collection of tools for forensic artifact and image analysis. It is a Security Operations solution designed to help security teams with Evidence Collection, Memory Forensics.
A library and set of tools for accessing and analyzing storage media devices and partitions for forensic analysis and investigation.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.