Skip to content

dfir-toolkit

Category: Files and apps / Log

Source: Cargo

File Extensions: .evtx, .reg, .dat, .lnk, .pf, .mft, .zip

Tags: forensics, timeline, log-analysis, event-log, registry, bodyfile

The dfir-toolkit is a collection of command-line tools for digital forensics and incident response (DFIR) tasks. It includes various utilities for analyzing log files, registry hives, MFT files, and other artifacts commonly encountered in DFIR investigations.