FastIR Collector

FastIR Collector is a “Fast Forensic” acquisition tool. It collects different artifacts on live Windows and records the results in csv or json files. Traditional forensics expertise does not keep pace with the development of information technology.

FastIR collector is dedicated to extract the most famous artifact of Windows, there by helping the analyst to make quick decisions about the state of the acquired system. Unlike Classic Judicial Instruments, FastIR runs on live systems, without having to turn the system off.
To compile FastIR, you will need pyinstaller . FastIR Collector is composed of several analysis packages, each one being able to retrieve a certain class of artifacts. The average runtime of the FastIR collector is about five minutes.

More.

DISCLAIMER: THIS POST IS FOR INFORMATIONAL PURPOSES ONLY AND IS NOT TO BE CONSIDERED LEGAL ADVICE ON ANY SUBJECT MATTER. DIGITAL FORENSICS CORP. IS NOT A LAWFIRM AND DOES NOT PROVIDE LEGAL ADVICE OR SERVICES. By viewing posts, the reader understands there is no attorney-client relationship, the post should not be used as a substitute for legal advice from a licensed professional attorney, and readers are urged to consult their own legal counsel on any specific legal questions concerning a specific situation.