A team of incident responders and forensic analysts, currently working at BDO Cyber Security in Dresden.
Need to contact us? Send a mail to info@dfir-dd.de.
| Tool | What does it do ? |
|---|---|
| DFIR Toolkit | Collection of CLI tools for Windows forensic analysis |
| dionysos | Scanner for various IoCs, esp. yara-based |
| Dissect Triage | A binary to collect triage data from Windows Systems, based on dissect |
| Kirby | Parse several forensic artifacts from a windows (triage) image, based on dissect |