Description: This project is a Digital Forensics Triage Tool designed for ethical hackers and cybersecurity enthusiasts to automate the collection of digital evidence and system information during forensic investigations. It is written in Python and runs on Linux systems.
Features:
- Collects system info (OS, logged-in users, disk usage, network config)
- Extracts browser history and downloads metadata
- Retrieves running processes and installed software
Generates a comprehensive report in HTML or TXT format
- Fully automated for quick triage during incident response
Technologies Used:
- Python 3
- Linux (Kali, Ubuntu, Parrot)
- Libraries:
os,subprocess,shutil,datetime
Usage:
- Clone the repository:
git clone https://github.com/yourusername/forensics-triage-tool.git- Navigate to project folder:
cd forensics-triage-tool- Make script executable:
chmod +x main.py- Run the tool:
python3 main.py- Check generated report in
output/folder
Future Improvements:
- Integrate automated network scans with Nmap
- Add malware detection module
- Include encrypted report output for sensitive environments
Project Status: ✅ Functional and tested on Kali Linux and Ubuntu ⚙️ Actively maintained for updates and new modules
Contact / Contributions: Contributions are welcome. Open an issue or submit a pull request.