Workshop: Forensic Analysis of eBPF based Linux Rootkits
-
Updated
Mar 13, 2024 - C
#
live-forensics
Here are 5 public repositories matching this topic...
Hive2CSV Live is a professional Windows registry forensics tool designed to extract data from registry hives (NTUSER.DAT, SYSTEM, SOFTWARE, etc.) and convert it into a clean, structured CSV format optimized for AI‑assisted analysis using LLMs such as Google Gemini and ChatGPT.
incident-response dfir threat-hunting mit-license malware-analysis digital-forensics windows-registry python-security open-source-security forensics-tools live-forensics ai-forensics registry-forensics chatgpt-forensics
-
Updated
Dec 17, 2025 - Python
Run FTK Imager directly from a portable USB or WinFE environment to perform forensic imaging without installing software on the target system.
incident-response forensics dfir digital-forensics ftk-imager disk-imaging evidence-collection windows-forensics live-forensics digital-forensic-tool live-imaging winfe
-
Updated
Dec 31, 2025
ForenScope‑IR‑Platform is an enterprise‑grade, modular digital forensics and incident response solution for rapid evidence collection, IOC extraction, YARA scanning, and AI‑driven anomaly detection.
python incident-response cybersecurity digital-forensics forensic-analysis memory-forensics forensic-tools live-forensics
-
Updated
Jan 1, 2026 - Python
🔍 Create a portable version of FTK Imager for easy forensic imaging from a USB drive without installing software on the target system.
incident-response forensics dfir digital-forensics ftk-imager disk-imaging evidence-collection windows-forensics live-forensics digital-forensic-tool live-imaging winfe
-
Updated
Jan 25, 2026
Improve this page
Add a description, image, and links to the live-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the live-forensics topic, visit your repo's landing page and select "manage topics."