From Forensics Wiki
Revision as of 14:21, 12 January 2014 by Joachim Metz
|Maintainer:||Darren Bilby and others|
GRR is an Incident Response Framework focused on Remote Live Forensics.
The memory analysis and acquisition capabilities of GRR are provided by the rekall project.
- Distributed forensics and incident response in the enterprise, by Michael Cohen, Darren Bilby, G. Caronni. Digital Investigation, 2011.
- Hunting in the enterprise: Forensic triage and incident response, by Andreas Moser, Michael Cohen, Digital Investigation, 2013.