mstoeck3/forensic-pathways
2
0
Fork 0
Code Issues 17 Pull Requests Projects Releases Activity

adjust dual urls

Browse Source
This commit is contained in:
overcuriousity
2025-07-14 16:56:06 +02:00
parent b8183ec961
commit b842df040c
5 changed files with 452 additions and 125 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
src/data/tools.yaml
View File

@@ -15,6 +15,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://www.autopsy.com/"
projectUrl: ""
license: "Apache 2.0"
tags: ["disk-forensics", "file-recovery", "timeline-analysis"]
isHosted: false
@@ -30,6 +31,7 @@ tools:
skillLevel: "advanced"
accessType: "download"
url: "https://www.volatilityfoundation.org/"
projectUrl: ""
license: "VSL"
tags: ["memory-forensics", "malware-analysis", "incident-response"]
isHosted: false
@@ -48,7 +50,8 @@ tools:
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "self-hosted"
url: "https://thehive.example.lab"
url: "https://strangebee.com/"
projectUrl: ""
license: "AGPL-3.0"
tags: ["incident-response", "case-management", "collaboration"]
isHosted: true
@@ -66,7 +69,8 @@ tools:
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "self-hosted"
url: "https://misp.example.lab"
url: "https://misp-project.org/"
projectUrl: "https://misp.cc24.dev"
license: "AGPL-3.0"
tags: ["threat-intelligence", "ioc-sharing", "collaboration"]
isHosted: true
@@ -83,7 +87,8 @@ tools:
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "self-hosted"
url: "https://timesketch.example.lab"
url: "https://timesketch.org/"
projectUrl: "https://timesketch.cc24.dev"
license: "Apache 2.0"
tags: ["timeline-analysis", "collaboration", "visualization"]
isHosted: true
@@ -101,6 +106,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://www.wireshark.org/"
projectUrl: ""
license: "GPL-2.0"
tags: ["network-analysis", "pcap", "protocol-analysis"]
isHosted: false
@@ -119,6 +125,7 @@ tools:
skillLevel: "advanced"
accessType: "commercial"
url: "https://www.opentext.com/products/encase-forensic"
projectUrl: ""
license: "Proprietary"
tags: ["commercial", "enterprise", "court-approved"]
isHosted: false
@@ -135,6 +142,7 @@ tools:
skillLevel: "advanced"
accessType: "self-hosted"
url: "https://cuckoosandbox.org/"
projectUrl: ""
license: "GPL-3.0"
tags: ["malware-analysis", "sandbox", "dynamic-analysis"]
isHosted: true
@@ -151,6 +159,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://exterro.com/ftk-imager"
projectUrl: ""
license: "Proprietary"
tags: ["disk-imaging", "preview", "data-acquisition"]
isHosted: false
@@ -167,6 +176,7 @@ tools:
skillLevel: "advanced"
accessType: "self-hosted"
url: "https://github.com/google/grr"
projectUrl: ""
license: "Apache 2.0"
tags: ["live-forensics", "remote-response", "dfir"]
isHosted: true
@@ -183,6 +193,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://plaso.readthedocs.io/"
projectUrl: ""
license: "Apache 2.0"
tags: ["timeline-analysis", "log-parsing", "dfir"]
isHosted: false
@@ -198,6 +209,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://www.netresec.com/?page=NetworkMiner"
projectUrl: ""
license: "Freeware/Commercial"
tags: ["pcap-analysis", "passive-sniffing", "credential-recovery"]
isHosted: false
@@ -214,6 +226,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://www.mandiant.com/resources/download/redline"
projectUrl: ""
license: "Proprietary"
tags: ["memory-analysis", "ioc-scan", "host-analysis"]
isHosted: false
@@ -230,6 +243,7 @@ tools:
skillLevel: "intermediate"
accessType: "download"
url: "https://www.kroll.com/en/services/cyber-risk/incident-response-litigation-support/kroll-artifact-parser-extractor-kape"
projectUrl: ""
license: "Freeware"
tags: ["triage", "artifact-collection", "parsing"]
isHosted: false
@@ -246,6 +260,7 @@ tools:
skillLevel: "advanced"
accessType: "self-hosted"
url: "https://www.velociraptor.app/"
projectUrl: ""
license: "Apache 2.0"
tags: ["dfir", "hunting", "endpoint-monitoring"]
isHosted: true
@@ -262,6 +277,7 @@ tools:
skillLevel: "advanced"
accessType: "self-hosted"
url: "https://arkime.com/"
projectUrl: ""
license: "Apache 2.0"
tags: ["packet-capture", "full-packet-analysis", "network-forensics"]
isHosted: true
@@ -279,10 +295,43 @@ tools:
skillLevel: "advanced"
accessType: "commercial"
url: "https://www.x-ways.net/forensics/"
projectUrl: ""
license: "Proprietary"
tags: ["disk-forensics", "file-recovery", "commercial"]
isHosted: false
# Collaboration Tools - Domain-agnostic
- name: "Nextcloud"
description: "Self-hosted file sharing and collaboration platform for secure data exchange"
domains: [] # Domain-agnostic
phases:
- "collaboration"
platforms: ["Web"]
skillLevel: "beginner"
accessType: "self-hosted"
url: "https://nextcloud.com/de/"
projectUrl: "https://cloud.cc24.dev"
license: "AGPL-3.0"
tags: ["file-sharing", "collaboration", "document-management", "secure-storage"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/10/status"
- name: "Gitea"
description: "Lightweight self-hosted Git service for code collaboration and version control"
domains: [] # Domain-agnostic
phases:
- "collaboration"
platforms: ["Web"]
skillLevel: "intermediate"
accessType: "self-hosted"
url: "https://git.example.lab"
projectUrl: ""
license: "MIT"
tags: ["version-control", "git", "code-collaboration", "documentation"]
isHosted: true
statusUrl: "https://uptime.example.lab/api/badge/11/status"
# Domain definitions for reference
domains:
- id: "storage-file-system"
@@ -309,4 +358,6 @@ phases:
- id: "analysis"
name: "Analysis"
- id: "reporting"
name: "Reporting"
name: "Reporting"
- id: "collaboration"
name: "General Tools for Collaboration"