Dissect

Forensics & Incident Response

A digital forensics & incident response framework that lets you quickly query forensic artefacts from various disk and file formats using a unified set of tools.

Track releases GitHub Website

Latest 3.22 · 3mo ago Security brief →

Features

Unified querying of forensic artefacts across multiple container, filesystem, and OS types
Provides `target-query` and `target-shell` for accessing parsed data like Runkeys, Prefetch files, and Windows Event Logs
Includes `acquire` tool to create lightweight containers from endpoints or hypervisors without file‑lock concerns

Recent releases

View all 1 releases →

3.22 New feature 3mo

Notable features

APFS filesystem support
Active Directory Certificate Services plugin
NTDS database filesystem

View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per month

Cadence 0.0 / wk

Last release 97d

Tracked 1

Security

Full profile →

Security score 6.5/10

OpenSSF 5.4/10

Open CVEs 0

SBOM

Community

GitHub stars 1,114

Forks 82

Open issues 10

Open PRs 1

Stars/wk velocity 0.0

About

Stars

1,114

Forks

View on GitHub Homepage Live demo Documentation

Install & Platforms

Install via

pip

Community & Support

Discord

Similar tools

Acquire

Forensic Artifacts