Difference between revisions of "GRR"

From Forensics Wiki
Jump to: navigation, search
 
(One intermediate revision by one user not shown)
Line 1: Line 1:
 
{{Infobox_Software |
 
{{Infobox_Software |
   name = Rekall |
+
   name = GRR |
 
   maintainer = [[Darren Bilby]] and others |
 
   maintainer = [[Darren Bilby]] and others |
 
   os = {{Cross-platform}} |
 
   os = {{Cross-platform}} |
Line 15: Line 15:
  
 
= See also =
 
= See also =
 +
* [[pytsk]]
 
* [[rekall]]
 
* [[rekall]]
 +
* [[sleuthkit]]
  
 
= External Links =
 
= External Links =

Latest revision as of 04:22, 18 January 2014

GRR
Maintainer: Darren Bilby and others
OS: Cross-platform
Genre: Incident Response
License: APL
Website: code.google.com/p/grr/

GRR is an Incident Response Framework focused on Remote Live Forensics.

The disk and file system analysis capabilities of GRR are provided by the sleuthkit and pytsk projects.

The memory analysis and acquisition capabilities of GRR are provided by the rekall project.

Contents

See also

External Links

Publications

Presentations

Workshops