mstoeck3/forensic-pathways
2
0
Fork 0
Code Issues 3 Pull Requests Projects Releases Activity

überarbeitung backend-code

Browse Source
This commit is contained in:
overcuriousity 2025-07-14 17:34:48 +02:00
parent b842df040c
commit 92dcd2ab74
6 changed files with 303 additions and 141 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
src/components/ToolCard.astro
View File

@ -12,28 +12,27 @@ export interface Props {
projectUrl?: string; projectUrl?: string;
license: string; license: string;
tags: string[]; tags: string[];
isHosted: boolean;
statusUrl?: string; statusUrl?: string;
}; };
} }
const { tool } = Astro.props; const { tool } = Astro.props;
// Determine card styling // Check if tool has a valid project URL (means we're hosting it)
const cardClass = tool.isHosted ? 'card card-hosted' : (tool.license !== 'Proprietary' ? 'card card-oss' : 'card');
// Check if tool has a valid project URL for hosted services
const hasValidProjectUrl = tool.projectUrl !== undefined && const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null && tool.projectUrl !== null &&
tool.projectUrl !== "" && tool.projectUrl !== "" &&
tool.projectUrl.trim() !== ""; tool.projectUrl.trim() !== "";
// Determine card styling based on hosting status (derived from projectUrl)
const cardClass = hasValidProjectUrl ? 'card card-hosted' : (tool.license !== 'Proprietary' ? 'card card-oss' : 'card');
--- ---
<div class={cardClass}> <div class={cardClass}>
<div style="display: flex; justify-content: space-between; align-items: start; margin-bottom: 0.75rem;"> <div style="display: flex; justify-content: space-between; align-items: start; margin-bottom: 0.75rem;">
<h3 style="margin: 0;">{tool.name}</h3> <h3 style="margin: 0;">{tool.name}</h3>
<div style="display: flex; gap: 0.5rem;"> <div style="display: flex; gap: 0.5rem;">
{tool.isHosted && <span class="badge badge-primary">Self-Hosted</span>} {hasValidProjectUrl && <span class="badge badge-primary">Self-Hosted</span>}
{tool.license !== 'Proprietary' && <span class="badge badge-success">Open Source</span>} {tool.license !== 'Proprietary' && <span class="badge badge-success">Open Source</span>}
</div> </div>
</div> </div>
@ -81,9 +80,9 @@ const hasValidProjectUrl = tool.projectUrl !== undefined &&
))} ))}
</div> </div>
<!-- Button section - different layouts for hosted vs non-hosted --> <!-- Button section - dual buttons for hosted tools, single for others -->
{tool.isHosted && hasValidProjectUrl ? ( {hasValidProjectUrl ? (
<!-- Two buttons for self-hosted tools with both URLs --> <!-- Two buttons for tools we're hosting -->
<div style="display: flex; gap: 0.5rem;"> <div style="display: flex; gap: 0.5rem;">
<a href={tool.url} target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;"> <a href={tool.url} target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;">
Project Page Project Page
@ -92,13 +91,8 @@ const hasValidProjectUrl = tool.projectUrl !== undefined &&
Access Service Access Service
</a> </a>
</div> </div>
) : tool.isHosted ? (
<!-- Single button for self-hosted tools with only project URL -->
<a href={tool.url} target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Project Page
</a>
) : ( ) : (
<!-- Single button for non-hosted tools --> <!-- Single button for tools we're not hosting -->
<a href={tool.url} target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;"> <a href={tool.url} target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Visit Website Visit Website
</a> </a>

11
src/components/ToolFilters.astro
View File

@ -207,6 +207,14 @@ const sortedTags = Object.entries(tagFrequency)
window.dispatchEvent(new CustomEvent('toolsFiltered', { detail: filtered })); window.dispatchEvent(new CustomEvent('toolsFiltered', { detail: filtered }));
} }
// Check if tool is hosted (has valid projectUrl)
function isToolHosted(tool) {
return tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
}
// Handle tag cloud clicks // Handle tag cloud clicks
function handleTagClick(tagItem) { function handleTagClick(tagItem) {
const tag = tagItem.getAttribute('data-tag'); const tag = tagItem.getAttribute('data-tag');
@ -232,7 +240,8 @@ const sortedTags = Object.entries(tagFrequency)
// Apply view-specific filters // Apply view-specific filters
if (view === 'hosted') { if (view === 'hosted') {
const hosted = window.toolsData.filter(tool => tool.isHosted); // Filter for hosted tools only (tools with valid projectUrl)
const hosted = window.toolsData.filter(tool => isToolHosted(tool));
window.dispatchEvent(new CustomEvent('toolsFiltered', { detail: hosted })); window.dispatchEvent(new CustomEvent('toolsFiltered', { detail: hosted }));
} else { } else {
filterTools(); filterTools();

96
src/components/ToolMatrix.astro
View File

@ -38,26 +38,32 @@ domains.forEach((domain: any) => {
<div id="collaboration-tools-section" style="margin-bottom: 1.5rem;"> <div id="collaboration-tools-section" style="margin-bottom: 1.5rem;">
<h3 style="margin-bottom: 0.75rem; color: var(--color-text); font-size: 1.125rem;">General Tools for Collaboration</h3> <h3 style="margin-bottom: 0.75rem; color: var(--color-text); font-size: 1.125rem;">General Tools for Collaboration</h3>
<div class="collaboration-tools-compact" id="collaboration-tools-container"> <div class="collaboration-tools-compact" id="collaboration-tools-container">
{collaborationTools.map((tool: any) => ( {collaborationTools.map((tool: any) => {
<div class={`collaboration-tool-compact ${tool.isHosted ? 'hosted' : tool.license !== 'Proprietary' ? 'oss' : ''}`} const hasValidProjectUrl = tool.projectUrl !== undefined &&
onclick={`window.showToolDetails('${tool.name}')`}> tool.projectUrl !== null &&
<div class="tool-compact-header"> tool.projectUrl !== "" &&
<h4 style="margin: 0; font-size: 0.875rem; font-weight: 600;">{tool.name}</h4> tool.projectUrl.trim() !== "";
<div style="display: flex; gap: 0.25rem;"> return (
{tool.isHosted && <span class="badge-mini badge-primary">Self-Hosted</span>} <div class={`collaboration-tool-compact ${hasValidProjectUrl ? 'hosted' : tool.license !== 'Proprietary' ? 'oss' : ''}`}
{tool.license !== 'Proprietary' && <span class="badge-mini badge-success">OSS</span>} onclick={`window.showToolDetails('${tool.name}')`}>
<div class="tool-compact-header">
<h4 style="margin: 0; font-size: 0.875rem; font-weight: 600;">{tool.name}</h4>
<div style="display: flex; gap: 0.25rem;">
{hasValidProjectUrl && <span class="badge-mini badge-primary">Self-Hosted</span>}
{tool.license !== 'Proprietary' && <span class="badge-mini badge-success">OSS</span>}
</div>
</div>
<p style="font-size: 0.75rem; color: var(--color-text-secondary); margin: 0.25rem 0; line-height: 1.3;">
{tool.description}
</p>
<div style="display: flex; gap: 0.75rem; font-size: 0.6875rem; color: var(--color-text-secondary);">
<span>{tool.platforms.join(', ')}</span>
<span>•</span>
<span>{tool.skillLevel}</span>
</div> </div>
</div> </div>
<p style="font-size: 0.75rem; color: var(--color-text-secondary); margin: 0.25rem 0; line-height: 1.3;"> );
{tool.description} })}
</p>
<div style="display: flex; gap: 0.75rem; font-size: 0.6875rem; color: var(--color-text-secondary);">
<span>{tool.platforms.join(', ')}</span>
<span>•</span>
<span>{tool.skillLevel}</span>
</div>
</div>
))}
</div> </div>
</div> </div>
@ -79,15 +85,21 @@ domains.forEach((domain: any) => {
<th>{domain.name}</th> <th>{domain.name}</th>
{phases.filter((phase: any) => phase.id !== 'collaboration').map((phase: any) => ( {phases.filter((phase: any) => phase.id !== 'collaboration').map((phase: any) => (
<td class="matrix-cell" data-domain={domain.id} data-phase={phase.id}> <td class="matrix-cell" data-domain={domain.id} data-phase={phase.id}>
{matrix[domain.id][phase.id].map((tool: any) => ( {matrix[domain.id][phase.id].map((tool: any) => {
const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
return (
<span <span
class={`tool-chip ${tool.isHosted ? 'tool-chip-hosted' : tool.license !== 'Proprietary' ? 'tool-chip-oss' : ''}`} class={`tool-chip ${hasValidProjectUrl ? 'tool-chip-hosted' : tool.license !== 'Proprietary' ? 'tool-chip-oss' : ''}`}
data-tool-name={tool.name} data-tool-name={tool.name}
onclick={`window.showToolDetails('${tool.name}')`} onclick={`window.showToolDetails('${tool.name}')`}
> >
{tool.name} {tool.name}
</span> </span>
))} );
})}
</td> </td>
))} ))}
</tr> </tr>
@ -134,8 +146,13 @@ domains.forEach((domain: any) => {
// Badges // Badges
const badgesContainer = document.getElementById('tool-badges'); const badgesContainer = document.getElementById('tool-badges');
const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
badgesContainer.innerHTML = ''; badgesContainer.innerHTML = '';
if (tool.isHosted) { if (hasValidProjectUrl) {
badgesContainer.innerHTML += '<span class="badge badge-primary">Self-Hosted</span>'; badgesContainer.innerHTML += '<span class="badge badge-primary">Self-Hosted</span>';
} }
if (tool.license !== 'Proprietary') { if (tool.license !== 'Proprietary') {
@ -165,15 +182,11 @@ domains.forEach((domain: any) => {
</div> </div>
`; `;
// Links - Updated to handle dual buttons for self-hosted tools // Links - Updated to handle dual buttons for hosted tools
const linksContainer = document.getElementById('tool-links'); const linksContainer = document.getElementById('tool-links');
const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
if (tool.isHosted && hasValidProjectUrl) { if (hasValidProjectUrl) {
// Two buttons for self-hosted tools with both URLs // Two buttons for tools we're hosting
linksContainer.innerHTML = ` linksContainer.innerHTML = `
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;"> <a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;">
Project Page Project Page
@ -182,15 +195,8 @@ domains.forEach((domain: any) => {
Access Service Access Service
</a> </a>
`; `;
} else if (tool.isHosted) {
// Single button for self-hosted tools with only project URL
linksContainer.innerHTML = `
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Project Page
</a>
`;
} else { } else {
// Single button for non-hosted tools // Single button for tools we're not hosting
linksContainer.innerHTML = ` linksContainer.innerHTML = `
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;"> <a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Visit Website Visit Website
@ -263,13 +269,18 @@ domains.forEach((domain: any) => {
// Re-populate with filtered DFIR tools // Re-populate with filtered DFIR tools
const filteredDfirTools = filtered.filter(tool => !tool.phases.includes('collaboration')); const filteredDfirTools = filtered.filter(tool => !tool.phases.includes('collaboration'));
filteredDfirTools.forEach(tool => { filteredDfirTools.forEach(tool => {
const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
tool.domains.forEach(domain => { tool.domains.forEach(domain => {
tool.phases.forEach(phase => { tool.phases.forEach(phase => {
if (phase !== 'collaboration') { if (phase !== 'collaboration') {
const cell = document.querySelector(`[data-domain="${domain}"][data-phase="${phase}"]`); const cell = document.querySelector(`[data-domain="${domain}"][data-phase="${phase}"]`);
if (cell) { if (cell) {
const chip = document.createElement('span'); const chip = document.createElement('span');
chip.className = `tool-chip ${tool.isHosted ? 'tool-chip-hosted' : tool.license !== 'Proprietary' ? 'tool-chip-oss' : ''}`; chip.className = `tool-chip ${hasValidProjectUrl ? 'tool-chip-hosted' : tool.license !== 'Proprietary' ? 'tool-chip-oss' : ''}`;
chip.textContent = tool.name; chip.textContent = tool.name;
chip.onclick = () => window.showToolDetails(tool.name); chip.onclick = () => window.showToolDetails(tool.name);
cell.appendChild(chip); cell.appendChild(chip);
@ -284,8 +295,13 @@ domains.forEach((domain: any) => {
// Helper function to create compact collaboration tool cards for matrix view // Helper function to create compact collaboration tool cards for matrix view
function createCollaborationToolCardCompact(tool) { function createCollaborationToolCardCompact(tool) {
const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
const cardDiv = document.createElement('div'); const cardDiv = document.createElement('div');
const cardClass = `collaboration-tool-compact ${tool.isHosted ? 'hosted' : tool.license !== 'Proprietary' ? 'oss' : ''}`; const cardClass = `collaboration-tool-compact ${hasValidProjectUrl ? 'hosted' : tool.license !== 'Proprietary' ? 'oss' : ''}`;
cardDiv.className = cardClass; cardDiv.className = cardClass;
cardDiv.onclick = () => window.showToolDetails(tool.name); cardDiv.onclick = () => window.showToolDetails(tool.name);
@ -293,7 +309,7 @@ domains.forEach((domain: any) => {
<div class="tool-compact-header"> <div class="tool-compact-header">
<h4 style="margin: 0; font-size: 0.875rem; font-weight: 600;">${tool.name}</h4> <h4 style="margin: 0; font-size: 0.875rem; font-weight: 600;">${tool.name}</h4>
<div style="display: flex; gap: 0.25rem;"> <div style="display: flex; gap: 0.25rem;">
${tool.isHosted ? '<span class="badge-mini badge-primary">Self-Hosted</span>' : ''} ${hasValidProjectUrl ? '<span class="badge-mini badge-primary">Self-Hosted</span>' : ''}
${tool.license !== 'Proprietary' ? '<span class="badge-mini badge-success">OSS</span>' : ''} ${tool.license !== 'Proprietary' ? '<span class="badge-mini badge-success">OSS</span>' : ''}
</div> </div>
</div> </div>

271
src/data/tools.yaml
View File

@ -4,7 +4,7 @@
tools: tools:
- name: "Autopsy" - name: "Autopsy"
description: "Open source digital forensics platform with a graphical interface" description: "Open-Source digitale Forensik-Plattform mit grafischer Benutzeroberfläche für Festplatten- und Dateisystemanalyse"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "application-code" - "application-code"
@ -17,11 +17,10 @@ tools:
url: "https://www.autopsy.com/" url: "https://www.autopsy.com/"
projectUrl: "" projectUrl: ""
license: "Apache 2.0" license: "Apache 2.0"
tags: ["disk-forensics", "file-recovery", "timeline-analysis"] tags: ["disk", "recovery", "timeline", "opensource"]
isHosted: false
- name: "Volatility 3" - name: "Volatility 3"
description: "Advanced memory forensics framework for incident response and malware analysis" description: "Fortgeschrittenes Memory-Forensik-Framework für Incident Response und Malware-Analyse mit Plugin-Architektur"
domains: domains:
- "memory-runtime" - "memory-runtime"
phases: phases:
@ -33,11 +32,10 @@ tools:
url: "https://www.volatilityfoundation.org/" url: "https://www.volatilityfoundation.org/"
projectUrl: "" projectUrl: ""
license: "VSL" license: "VSL"
tags: ["memory-forensics", "malware-analysis", "incident-response"] tags: ["memory", "malware", "runtime", "plugins"]
isHosted: false
- name: "TheHive" - name: "TheHive"
description: "Security incident response platform for SOCs, CERTs and security teams" description: "Kollaborative Security-Incident-Response-Plattform für SOCs, CERTs und Sicherheitsteams mit Case-Management"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "network-communication" - "network-communication"
@ -53,12 +51,11 @@ tools:
url: "https://strangebee.com/" url: "https://strangebee.com/"
projectUrl: "" projectUrl: ""
license: "AGPL-3.0" license: "AGPL-3.0"
tags: ["incident-response", "case-management", "collaboration"] tags: ["incident-response", "case-management", "collaboration", "workflow"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/1/status" statusUrl: "https://uptime.example.lab/api/badge/1/status"
- name: "MISP" - name: "MISP"
description: "Malware Information Sharing Platform for threat intelligence" description: "Threat-Intelligence-Plattform für strukturierten Austausch von Indicators of Compromise (IoCs) und Bedrohungsinformationen"
domains: domains:
- "network-communication" - "network-communication"
- "application-code" - "application-code"
@ -72,12 +69,11 @@ tools:
url: "https://misp-project.org/" url: "https://misp-project.org/"
projectUrl: "https://misp.cc24.dev" projectUrl: "https://misp.cc24.dev"
license: "AGPL-3.0" license: "AGPL-3.0"
tags: ["threat-intelligence", "ioc-sharing", "collaboration"] tags: ["threat-intelligence", "ioc", "sharing", "automation"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/2/status" statusUrl: "https://uptime.example.lab/api/badge/2/status"
- name: "Timesketch" - name: "Timesketch"
description: "Collaborative forensic timeline analysis platform" description: "Kollaborative forensische Timeline-Analyse-Plattform für chronologische Ereigniskorrelation und -visualisierung"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "network-communication" - "network-communication"
@ -90,12 +86,11 @@ tools:
url: "https://timesketch.org/" url: "https://timesketch.org/"
projectUrl: "https://timesketch.cc24.dev" projectUrl: "https://timesketch.cc24.dev"
license: "Apache 2.0" license: "Apache 2.0"
tags: ["timeline-analysis", "collaboration", "visualization"] tags: ["timeline", "visualization", "collaboration", "correlation"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/3/status" statusUrl: "https://uptime.example.lab/api/badge/3/status"
- name: "Wireshark" - name: "Wireshark"
description: "Network protocol analyzer for network troubleshooting and analysis" description: "Netzwerk-Protokoll-Analyzer für Paketaufzeichnung und -analyse mit umfangreichen Dekodierungsfähigkeiten"
domains: domains:
- "network-communication" - "network-communication"
phases: phases:
@ -108,11 +103,10 @@ tools:
url: "https://www.wireshark.org/" url: "https://www.wireshark.org/"
projectUrl: "" projectUrl: ""
license: "GPL-2.0" license: "GPL-2.0"
tags: ["network-analysis", "pcap", "protocol-analysis"] tags: ["network", "pcap", "protocol", "realtime"]
isHosted: false
- name: "EnCase" - name: "EnCase"
description: "Commercial digital investigation platform" description: "Kommerzielle digitale Ermittlungsplattform mit gerichtlich anerkannten Forensik-Funktionen und umfassender Berichterstattung"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "memory-runtime" - "memory-runtime"
@ -127,11 +121,10 @@ tools:
url: "https://www.opentext.com/products/encase-forensic" url: "https://www.opentext.com/products/encase-forensic"
projectUrl: "" projectUrl: ""
license: "Proprietary" license: "Proprietary"
tags: ["commercial", "enterprise", "court-approved"] tags: ["commercial", "enterprise", "court-approved", "comprehensive"]
isHosted: false
- name: "Cuckoo Sandbox" - name: "Cuckoo Sandbox"
description: "Automated malware analysis system using virtualization" description: "Automatisiertes Malware-Analysesystem mit virtualisierter Umgebung für dynamische Verhaltensanalyse"
domains: domains:
- "application-code" - "application-code"
- "network-communication" - "network-communication"
@ -144,12 +137,11 @@ tools:
url: "https://cuckoosandbox.org/" url: "https://cuckoosandbox.org/"
projectUrl: "" projectUrl: ""
license: "GPL-3.0" license: "GPL-3.0"
tags: ["malware-analysis", "sandbox", "dynamic-analysis"] tags: ["malware", "sandbox", "dynamic-analysis", "automation"]
isHosted: true
statusUrl: "" statusUrl: ""
- name: "FTK Imager" - name: "FTK Imager"
description: "Forensic imaging and preview tool by Exterro" description: "Forensisches Imaging- und Vorschau-Tool für Erstellung forensischer Kopien und erste Datenanalyse"
domains: domains:
- "storage-file-system" - "storage-file-system"
phases: phases:
@ -161,11 +153,10 @@ tools:
url: "https://exterro.com/ftk-imager" url: "https://exterro.com/ftk-imager"
projectUrl: "" projectUrl: ""
license: "Proprietary" license: "Proprietary"
tags: ["disk-imaging", "preview", "data-acquisition"] tags: ["imaging", "preview", "acquisition", "freeware"]
isHosted: false
- name: "GRR Rapid Response" - name: "GRR Rapid Response"
description: "Remote live forensics platform by Google" description: "Remote-Live-Forensik-Plattform von Google für skalierbare Incident-Response auf Unternehmensnetzwerken"
domains: domains:
- "platform-infrastructure" - "platform-infrastructure"
- "storage-file-system" - "storage-file-system"
@ -178,12 +169,11 @@ tools:
url: "https://github.com/google/grr" url: "https://github.com/google/grr"
projectUrl: "" projectUrl: ""
license: "Apache 2.0" license: "Apache 2.0"
tags: ["live-forensics", "remote-response", "dfir"] tags: ["live-forensics", "remote", "scalable", "enterprise"]
isHosted: true
statusUrl: "" statusUrl: ""
- name: "Plaso (log2timeline)" - name: "Plaso (log2timeline)"
description: "Tool for automatic creation of timelines from various log files" description: "Tool zur automatischen Erstellung von Super-Timelines aus verschiedenen Log-Dateien und Artefakten"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "application-code" - "application-code"
@ -195,11 +185,10 @@ tools:
url: "https://plaso.readthedocs.io/" url: "https://plaso.readthedocs.io/"
projectUrl: "" projectUrl: ""
license: "Apache 2.0" license: "Apache 2.0"
tags: ["timeline-analysis", "log-parsing", "dfir"] tags: ["timeline", "log-parsing", "correlation", "automation"]
isHosted: false
- name: "NetworkMiner" - name: "NetworkMiner"
description: "Network forensic analysis tool (NFAT)" description: "Netzwerk-Forensik-Analyse-Tool für Paket-Sniffing und Extraktion von Dateien, Bildern und Anmeldedaten"
domains: domains:
- "network-communication" - "network-communication"
phases: phases:
@ -211,11 +200,10 @@ tools:
url: "https://www.netresec.com/?page=NetworkMiner" url: "https://www.netresec.com/?page=NetworkMiner"
projectUrl: "" projectUrl: ""
license: "Freeware/Commercial" license: "Freeware/Commercial"
tags: ["pcap-analysis", "passive-sniffing", "credential-recovery"] tags: ["pcap", "passive", "extraction", "credentials"]
isHosted: false
- name: "Redline" - name: "Redline"
description: "Memory and host analysis tool from FireEye" description: "Memory- und Host-Analyse-Tool von FireEye/Mandiant für IOC-Scanning und Endpoint-Forensik"
domains: domains:
- "memory-runtime" - "memory-runtime"
- "application-code" - "application-code"
@ -228,11 +216,10 @@ tools:
url: "https://www.mandiant.com/resources/download/redline" url: "https://www.mandiant.com/resources/download/redline"
projectUrl: "" projectUrl: ""
license: "Proprietary" license: "Proprietary"
tags: ["memory-analysis", "ioc-scan", "host-analysis"] tags: ["memory", "ioc", "endpoint", "freeware"]
isHosted: false
- name: "KAPE" - name: "KAPE"
description: "Triage tool to collect and parse forensic artifacts quickly" description: "Triage-Tool für schnelle Sammlung und Parsing forensischer Artefakte mit modularem Ansatz"
domains: domains:
- "storage-file-system" - "storage-file-system"
- "platform-infrastructure" - "platform-infrastructure"
@ -245,11 +232,10 @@ tools:
url: "https://www.kroll.com/en/services/cyber-risk/incident-response-litigation-support/kroll-artifact-parser-extractor-kape" url: "https://www.kroll.com/en/services/cyber-risk/incident-response-litigation-support/kroll-artifact-parser-extractor-kape"
projectUrl: "" projectUrl: ""
license: "Freeware" license: "Freeware"
tags: ["triage", "artifact-collection", "parsing"] tags: ["triage", "artifacts", "modular", "fast"]
isHosted: false
- name: "Velociraptor" - name: "Velociraptor"
description: "Endpoint visibility and DFIR tool by Rapid7" description: "Endpoint-Visibility- und DFIR-Tool für Hunting, Monitoring und Remote-Forensik mit VQL-Abfragesprache"
domains: domains:
- "platform-infrastructure" - "platform-infrastructure"
- "storage-file-system" - "storage-file-system"
@ -260,14 +246,13 @@ tools:
skillLevel: "advanced" skillLevel: "advanced"
accessType: "self-hosted" accessType: "self-hosted"
url: "https://www.velociraptor.app/" url: "https://www.velociraptor.app/"
projectUrl: "" projectUrl: "https://velociraptor.cc24.dev"
license: "Apache 2.0" license: "Apache 2.0"
tags: ["dfir", "hunting", "endpoint-monitoring"] tags: ["hunting", "endpoint", "monitoring", "vql"]
isHosted: true statusUrl: "https://uptime.example.lab/api/badge/4/status"
statusUrl: ""
- name: "Arkime" - name: "Arkime"
description: "Large-scale full packet capture and analysis" description: "Skalierbare Full-Packet-Capture- und Analyseplattform für große Netzwerkumgebungen"
domains: domains:
- "network-communication" - "network-communication"
phases: phases:
@ -279,12 +264,11 @@ tools:
url: "https://arkime.com/" url: "https://arkime.com/"
projectUrl: "" projectUrl: ""
license: "Apache 2.0" license: "Apache 2.0"
tags: ["packet-capture", "full-packet-analysis", "network-forensics"] tags: ["pcap", "scalable", "indexing", "search"]
isHosted: true
statusUrl: "" statusUrl: ""
- name: "X-Ways Forensics" - name: "X-Ways Forensics"
description: "Advanced work environment for computer forensic examiners" description: "Fortgeschrittene Arbeitsumgebung für Computer-Forensik-Prüfer mit effizienter Dateiwiederherstellung"
domains: domains:
- "storage-file-system" - "storage-file-system"
phases: phases:
@ -297,12 +281,180 @@ tools:
url: "https://www.x-ways.net/forensics/" url: "https://www.x-ways.net/forensics/"
projectUrl: "" projectUrl: ""
license: "Proprietary" license: "Proprietary"
tags: ["disk-forensics", "file-recovery", "commercial"] tags: ["disk", "recovery", "commercial", "efficient"]
isHosted: false
# Multimedia Forensics Tools
- name: "Amped FIVE"
description: "Umfassende forensische Bild- und Videoanalyse-Software mit über 140 wissenschaftlich validierten Filtern für Verbesserung und Authentifizierung"
domains:
- "multimedia-content"
phases:
- "examination"
- "analysis"
- "reporting"
platforms: ["Windows"]
skillLevel: "intermediate"
accessType: "commercial"
url: "https://ampedsoftware.com/five"
projectUrl: ""
license: "Proprietary"
tags: ["video", "image", "enhancement", "court-accepted"]
- name: "Cognitech TriSuite64"
description: "Forensische Video-Analyse-Suite mit patentierten 3D-Photogrammetrie-Funktionen für Tatortmessungen und Fahrzeugidentifikation"
domains:
- "multimedia-content"
phases:
- "examination"
- "analysis"
- "reporting"
platforms: ["Windows"]
skillLevel: "advanced"
accessType: "commercial"
url: "https://cognitech.com/"
projectUrl: ""
license: "Proprietary"
tags: ["video", "3d-analysis", "photogrammetry", "measurement"]
- name: "ExifTool"
description: "Plattformunabhängiges Tool zum Lesen, Schreiben und Bearbeiten von Metadaten in über 200 Dateiformaten"
domains:
- "multimedia-content"
- "storage-file-system"
phases:
- "data-collection"
- "examination"
- "analysis"
platforms: ["Windows", "Linux", "macOS"]
skillLevel: "beginner"
accessType: "download"
url: "https://exiftool.org/"
projectUrl: ""
license: "Perl Artistic License"
tags: ["metadata", "exif", "batch-processing", "opensource"]
- name: "Amped Authenticate"
description: "Forensische Bildauthentifizierungs-Software zur Erkennung von Manipulationen und Kamera-Ballistik"
domains:
- "multimedia-content"
phases:
- "examination"
- "analysis"
platforms: ["Windows"]
skillLevel: "advanced"
accessType: "commercial"
url: "https://ampedsoftware.com/authenticate"
projectUrl: ""
license: "Proprietary"
tags: ["image", "authentication", "tampering", "camera-matching"]
# Financial Forensics Tools
- name: "ACL Analytics (IDEA)"
description: "Leistungsstarke Datenanalyse-Software für Audit und Compliance mit über 100 vordefinierten Prüfroutinen"
domains:
- "transaction-financial"
- "storage-file-system"
phases:
- "data-collection"
- "examination"
- "analysis"
- "reporting"
platforms: ["Windows"]
skillLevel: "intermediate"
accessType: "commercial"
url: "https://www.caseware.com/us/products/idea/"
projectUrl: ""
license: "Proprietary"
tags: ["audit", "compliance", "data-analysis", "automation"]
- name: "Chainalysis"
description: "Blockchain-Intelligence-Plattform für Kryptowährungs-Ermittlungen und Geldflussanalyse über verschiedene Chains"
domains:
- "transaction-financial"
- "network-communication"
phases:
- "data-collection"
- "examination"
- "analysis"
- "reporting"
platforms: ["Web"]
skillLevel: "advanced"
accessType: "commercial"
url: "https://www.chainalysis.com/"
projectUrl: ""
license: "Proprietary"
tags: ["blockchain", "cryptocurrency", "money-flow", "compliance"]
- name: "FraudFindr"
description: "Forensische Buchhaltungssoftware für automatisierte Analyse von Finanztransaktionen und Betrugserkennung"
domains:
- "transaction-financial"
phases:
- "examination"
- "analysis"
- "reporting"
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "commercial"
url: "https://fraudfindr.com/"
projectUrl: ""
license: "Proprietary"
tags: ["fraud-detection", "transaction", "reporting", "automation"]
- name: "Valid8 Financial"
description: "Verifizierte Financial-Intelligence-Plattform für Transaktions-Tracing und forensische Buchhaltungsanalyse"
domains:
- "transaction-financial"
phases:
- "examination"
- "analysis"
- "reporting"
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "commercial"
url: "https://www.valid8financial.com/"
projectUrl: ""
license: "Proprietary"
tags: ["transaction", "verification", "visualization", "tracing"]
- name: "DocuClipper"
description: "KI-gestütztes OCR-Tool zur Extraktion und Analyse von Bankdaten aus PDF- und gescannten Dokumenten"
domains:
- "transaction-financial"
- "storage-file-system"
phases:
- "data-collection"
- "analysis"
platforms: ["Web"]
skillLevel: "beginner"
accessType: "commercial"
url: "https://www.docuclipper.com/"
projectUrl: ""
license: "Proprietary"
tags: ["ocr", "bank-statements", "extraction", "ai"]
# Visualization and Analysis Tools
- name: "Neo4j"
description: "Graph-Datenbank für Visualisierung komplexer Beziehungen und Netzwerkanalyse in forensischen Untersuchungen"
domains:
- "network-communication"
- "application-code"
- "transaction-financial"
phases:
- "analysis"
- "reporting"
platforms: ["Web", "Windows", "Linux", "macOS"]
skillLevel: "intermediate"
accessType: "self-hosted"
url: "https://neo4j.com/"
projectUrl: "https://neo4j.cc24.dev"
license: "GPL-3.0 / Commercial"
tags: ["graph", "visualization", "relationships", "queries"]
statusUrl: "https://uptime.example.lab/api/badge/5/status"
# Collaboration Tools - Domain-agnostic # Collaboration Tools - Domain-agnostic
- name: "Nextcloud" - name: "Nextcloud"
description: "Self-hosted file sharing and collaboration platform for secure data exchange" description: "Self-Hosted-Plattform für sicheren Dateiaustausch und Zusammenarbeit mit End-to-End-Verschlüsselung"
domains: [] # Domain-agnostic domains: [] # Domain-agnostic
phases: phases:
- "collaboration" - "collaboration"
@ -312,12 +464,11 @@ tools:
url: "https://nextcloud.com/de/" url: "https://nextcloud.com/de/"
projectUrl: "https://cloud.cc24.dev" projectUrl: "https://cloud.cc24.dev"
license: "AGPL-3.0" license: "AGPL-3.0"
tags: ["file-sharing", "collaboration", "document-management", "secure-storage"] tags: ["file-sharing", "collaboration", "encryption", "privacy"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/10/status" statusUrl: "https://uptime.example.lab/api/badge/10/status"
- name: "Gitea" - name: "Gitea"
description: "Lightweight self-hosted Git service for code collaboration and version control" description: "Leichtgewichtiger Self-Hosted Git-Service für Code-Kollaboration, Versionskontrolle und Dokumentation"
domains: [] # Domain-agnostic domains: [] # Domain-agnostic
phases: phases:
- "collaboration" - "collaboration"
@ -325,13 +476,11 @@ tools:
skillLevel: "intermediate" skillLevel: "intermediate"
accessType: "self-hosted" accessType: "self-hosted"
url: "https://git.example.lab" url: "https://git.example.lab"
projectUrl: "" projectUrl: "https://gitea.cc24.dev"
license: "MIT" license: "MIT"
tags: ["version-control", "git", "code-collaboration", "documentation"] tags: ["version-control", "git", "documentation", "lightweight"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/11/status" statusUrl: "https://uptime.example.lab/api/badge/11/status"
# Domain definitions for reference # Domain definitions for reference
domains: domains:
- id: "storage-file-system" - id: "storage-file-system"

31
src/pages/index.astro
View File

@ -104,27 +104,21 @@ const tools = data.tools;
} }
}); });
// This replaces the createToolCard function in index.astro script section
// This replaces the createToolCard function in index.astro script section
// This replaces the createToolCard function in index.astro script section
// Create tool card element // Create tool card element
function createToolCard(tool) { function createToolCard(tool) {
const cardDiv = document.createElement('div');
const cardClass = tool.isHosted ? 'card card-hosted' : (tool.license !== 'Proprietary' ? 'card card-oss' : 'card');
cardDiv.className = cardClass;
// Create button HTML based on hosting status
const hasValidProjectUrl = tool.projectUrl !== undefined && const hasValidProjectUrl = tool.projectUrl !== undefined &&
tool.projectUrl !== null && tool.projectUrl !== null &&
tool.projectUrl !== "" && tool.projectUrl !== "" &&
tool.projectUrl.trim() !== ""; tool.projectUrl.trim() !== "";
const cardDiv = document.createElement('div');
const cardClass = hasValidProjectUrl ? 'card card-hosted' : (tool.license !== 'Proprietary' ? 'card card-oss' : 'card');
cardDiv.className = cardClass;
// Create button HTML based on hosting status
let buttonHTML; let buttonHTML;
if (tool.isHosted && hasValidProjectUrl) { if (hasValidProjectUrl) {
// Two buttons for self-hosted tools with both URLs // Two buttons for tools we're hosting
buttonHTML = ` buttonHTML = `
<div style="display: flex; gap: 0.5rem;"> <div style="display: flex; gap: 0.5rem;">
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;"> <a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-secondary" style="flex: 1;">
@ -135,15 +129,8 @@ function createToolCard(tool) {
</a> </a>
</div> </div>
`; `;
} else if (tool.isHosted) {
// Single button for self-hosted tools with only project URL
buttonHTML = `
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Project Page
</a>
`;
} else { } else {
// Single button for non-hosted tools // Single button for tools we're not hosting
buttonHTML = ` buttonHTML = `
<a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;"> <a href="${tool.url}" target="_blank" rel="noopener noreferrer" class="btn btn-primary" style="width: 100%;">
Visit Website Visit Website
@ -155,7 +142,7 @@ function createToolCard(tool) {
<div style="display: flex; justify-content: space-between; align-items: start; margin-bottom: 0.75rem;"> <div style="display: flex; justify-content: space-between; align-items: start; margin-bottom: 0.75rem;">
<h3 style="margin: 0;">${tool.name}</h3> <h3 style="margin: 0;">${tool.name}</h3>
<div style="display: flex; gap: 0.5rem;"> <div style="display: flex; gap: 0.5rem;">
${tool.isHosted ? '<span class="badge badge-primary">Self-Hosted</span>' : ''} ${hasValidProjectUrl ? '<span class="badge badge-primary">Self-Hosted</span>' : ''}
${tool.license !== 'Proprietary' ? '<span class="badge badge-success">Open Source</span>' : ''} ${tool.license !== 'Proprietary' ? '<span class="badge badge-success">Open Source</span>' : ''}
</div> </div>
</div> </div>

11
src/pages/status.astro
View File

@ -8,7 +8,14 @@ import path from 'path';
const yamlPath = path.join(process.cwd(), 'src/data/tools.yaml'); const yamlPath = path.join(process.cwd(), 'src/data/tools.yaml');
const yamlContent = await fs.readFile(yamlPath, 'utf8'); const yamlContent = await fs.readFile(yamlPath, 'utf8');
const data = load(yamlContent) as any; const data = load(yamlContent) as any;
const hostedServices = data.tools.filter((tool: any) => tool.isHosted);
// Filter for hosted services based on projectUrl presence
const hostedServices = data.tools.filter((tool: any) => {
return tool.projectUrl !== undefined &&
tool.projectUrl !== null &&
tool.projectUrl !== "" &&
tool.projectUrl.trim() !== "";
});
--- ---
<BaseLayout title="Service Status"> <BaseLayout title="Service Status">
@ -32,7 +39,7 @@ const hostedServices = data.tools.filter((tool: any) => tool.isHosted);
<p class="text-muted" style="font-size: 0.875rem; margin-bottom: 1rem;"> <p class="text-muted" style="font-size: 0.875rem; margin-bottom: 1rem;">
{service.description} {service.description}
</p> </p>
<a href={service.url} target="_blank" rel="noopener noreferrer" class="btn btn-secondary"> <a href={service.projectUrl} target="_blank" rel="noopener noreferrer" class="btn btn-secondary">
Access Service → Access Service →
</a> </a>
</div> </div>