Repositories list

• MacOS-Analyzer-Suite

  Public
  A collection of PowerShell scripts for analyzing macOS Forensic Artifacts

  macosappleincident-response+ 4

  macosappleincident-responsedfirdigital-forensicsforensic-toolsdfir-tools

  PowerShell

  •

  MIT License

  •2•28•0•0•Updated Mar 16, 2026Mar 16, 2026

• macos-collector

  Public
  macos-collector - Automated Collection of macOS Forensic Artifacts for DFIR

  macosappleincident-response+ 4

  macosappleincident-responsedfirdigital-forensicsforensic-toolsdfir-tools

  Shell

  •

  MIT License

  •3•37•0•0•Updated Mar 16, 2026Mar 16, 2026

• .github

  Public
  About

  0•0•0•0•Updated Jan 11, 2026Jan 11, 2026

• Microsoft-Analyzer-Suite

  Public

  LETHAL-FORENSICS/Microsoft-Analyzer-Suite’s past year of commit activity
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID

  powershellincident-responseazure-active-directory+ 3

  powershellincident-responseazure-active-directorymicrosoft-graphmicrosoft-365microsoft-entra

  PowerShell

  •

  GNU General Public License v3.0

  •66•581•0•0•Updated Dec 6, 2025Dec 6, 2025

• Collect-MemoryDump

  Public
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR

  powershellincident-responsedfir+ 4

  powershellincident-responsedfirdigital-forensicsmemory-forensicslive-responsememory-acquisition

  PowerShell

  •

  GNU General Public License v3.0

  •30•254•0•0•Updated Oct 29, 2025Oct 29, 2025

• MemProcFS-Analyzer

  Public
  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR

  powershellincident-responsedfir+ 4

  powershellincident-responsedfirdigital-forensicsmemory-forensicslive-responsememprocfs

  PowerShell

  •

  GNU General Public License v3.0

  •74•702•1•0•Updated Oct 22, 2025Oct 22, 2025