DFIR Automation Scripts

A growing collection of Python utilities for digital forensics and incident response workflows.

Planned Features

• Automated Windows artifact parsing (EVTX, prefetch, registry hives)
• IOC (Indicators of Compromise) extraction from memory dumps
• Evidence triage reporting (HTML/PDF output)
• Integration with VirusTotal API

Status

🚧 Currently in development — check back for GitHub link soon.