Turbinia is an open-source framework for deploying, managing, and running distributed forensic workloads. It automates the running of common forensic processing tools to help with processing evidence in the Cloud, scaling the processing of large amounts of evidence, and decreasing response time by parallelizing processing. Turbinia is composed of different components for the client, server, and workers, which can be run in the Cloud, on local machines, or as a hybrid of both. The client makes requests to process evidence to the server, which creates logical jobs and schedules forensic processing tasks to be run by the workers. Evidence is split up by the jobs when possible, and many tasks can be created to process the evidence in parallel. Workers run continuously to process tasks, and any new evidence created or discovered by the tasks is fed back into Turbinia for further processing.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A reverse engineering framework with a focus on usability and code cleanliness
Forensic imaging program with full hash authentication and various acquisition options.
Stegextract is a Bash script that extracts hidden files and strings from images, supporting PNG, JPG, and GIF formats.
A tool that uses Plaso to parse forensic artifacts and disk images, creating custom reports for easier analysis.
A powerful tool for analyzing and visualizing system activity timelines.
A cybersecurity tool for collecting and analyzing forensic artifacts on live systems.
Diffy is a digital forensics and incident response (DFIR) tool developed by Netflix's Security Intelligence and Response Team (SIRT) for scoping compromises across cloud instances.
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.