One DFIR console to rule them all. Built on top of the Viper Framework
- Please see the wiki for more information about CIRTKit and documentation
- Bit9
- Palo Alto Networks
- EnCase/FTK
- Packet Analysis (possibly Dshell)
- Javascript Unpacking/Deobfuscation
- Volatility Memory Analysis Framework
- Hex Viewer/Editor
- Automation is key. Scripting is key to DFIR, thus needs to be available in CIRTKit