windows-forensics

Here are 4 public repositories matching this topic...

andranglin / Chimera

Modular, agent-less forensic triage framework for rapid Windows & Linux artifact collection and memory acquisition

powershell incident-response forensics dfir cybersecurity digital-forensics triage blueteam memory-forensics security-tools live-response windows-forensics memory-acquisition linux-forensics ir-toolkit aritfact-collection

Updated Jan 8, 2026
PowerShell

eyesn1p3r / WindowsLiveForensics

Star

A PowerShell script for live forensic data collection on Windows. No external dependencies required.

powershell incident-response security-tools live-forensic windows-forensics dfir-tools

Updated Oct 3, 2025
PowerShell

andranglin / Cerberus

Star

Powerful investigation toolkit for deeper forensic analysis

Updated Jan 21, 2026
PowerShell

arnab-glitch / Portable-Registry-Acquisition-Tool

Star

RegEx is a portable Windows Registry Acquisition tool designed for forensic investigators. It runs directly from a USB device, requires no installation, and extracts targeted registry hives using predefined acquisition profiles. Built for speed, reliability, and zero-footprint operation.

regex dfir cybersecurity digital-forensics windows-forensics registry-forensics forensic-suite

Updated Nov 21, 2025
PowerShell

Improve this page

Add a description, image, and links to the windows-forensics topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the windows-forensics topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

windows-forensics

Here are 4 public repositories matching this topic...

andranglin / Chimera

eyesn1p3r / WindowsLiveForensics

andranglin / Cerberus

arnab-glitch / Portable-Registry-Acquisition-Tool

Improve this page

Add this topic to your repo