DFIR

Tool categories

There are 3 tool collections available that cover DFIR:

Security tools

The following security tools are linked to DFIR and are worth investigating.

  • Volatility (memory forensics framework)
  • dfis (DFIR toolkit)
  • lmg
  • shellbags (extract information from Windows Registry file)