> PROJECTS.INIT

OPEN SOURCE PROJECTS

Tools and frameworks for digital forensics, incident response, and threat hunting

Memory Forensics Toolkit

ForensicsActive

Advanced memory analysis framework for Windows and Linux systems. Includes custom plugins for rootkit detection, process injection analysis, and ransomware artifact extraction.

Automated timeline generation from memory dumps
Custom plugins for APT detection
Multi-threading support for faster analysis
Integration with YARA rules
PythonVolatilityC++Memory Analysis
Source CodeLive Demo

CloudTrail Analyzer

Cloud SecurityActive

Real-time AWS CloudTrail log analysis tool for detecting suspicious activities in cloud environments. Implements ML-based anomaly detection and automated incident triage.

Real-time log ingestion and analysis
Automated threat scoring
Integration with SIEM platforms
Custom detection rules engine
PythonAWSMachine LearningELK Stack
Source CodeLive Demo

Malware Sandbox Automation

Malware AnalysisActive

Automated malware analysis pipeline with dynamic and static analysis capabilities. Generates comprehensive reports including IoCs, behavioral analysis, and MITRE ATT&CK mapping.

Automated sandbox deployment
Network traffic analysis
API call hooking and monitoring
Automated report generation with IoCs
PythonCuckooDockerYARA
Source CodeLive Demo

Network Forensics Platform

Network ForensicsMaintenance

Distributed network forensics platform for capturing and analyzing network traffic at scale. Features protocol dissection, pattern matching, and automated threat hunting.

Distributed packet capture
Protocol analysis and reconstruction
Automated threat intelligence integration
Custom protocol dissectors
PythonZeekWiresharkRedis
Source CodeLive Demo

Ransomware Detection Engine

Threat DetectionActive

Machine learning-based ransomware detection system that monitors file system activities and network behaviors to identify encryption attempts in real-time.

Real-time file system monitoring
Behavioral analysis with ML models
Automated containment actions
Integration with EDR platforms
PythonTensorFlowWindows APIC++
Source CodeLive Demo

DFIR Automation Scripts

AutomationActive

Collection of PowerShell and Python scripts for automating common digital forensics and incident response tasks. Includes triage, evidence collection, and timeline analysis.

Automated triage collection
Remote evidence acquisition
Timeline generation and analysis
Cross-platform support
PowerShellPythonBashForensics
Source CodeLive Demo

These projects are open source and available for contribution. Feel free to fork, submit PRs, or reach out for collaboration opportunities.

> VIEW_ON_GITHUB