Autopsy Add-On Modules
Digital Forensics Platform Extensions
A set of modules that extend the capabilities of Autopsy with additional parsers, automation workflows, artifact extractors, and investigative enhancements.
View Autopsy Modules →
4nsic Zone
Digital Forensics • Incident Response • OSINT Resources
WELCOME
You’ve reached 4nsic Zone — a curated hub for DFIR and OSINT work. Start with the Chip ID Framework, browse OSINT resources, or dive into hands-on tools.
Your launchpad for digital investigations
4nsic Zone brings together chip identification, open-source intelligence resources, and forensic tooling in one place. It’s designed for analysts, investigators, and anyone who lives in hex dumps, logs, timelines, and memory captures.
Use the navigation above to jump into:
Flash memory chip ID
OSINT / LE resources
DFIR tools & utilities
Training & knowledge
Chip ID Framework
Navigate a structured tree of flash memory packages by notch corner, size, package type, pin count, make, and model — with direct links to datasheets.
Open Chip ID Framework →Resources
Law enforcement request portals, OSINT tools, training sites, geolocation resources, and more — organized into a familiar OSINT Framework-style layout.
Browse DFIR / OSINT Resources →Tools
Direct links to forensic suites, parsers, EXIF utilities, packet analyzers, password tools, scripting helpers, and supporting utilities for day-to-day investigations.
Explore Tools →DFIR GitHub Hall of Fame- TOOLS
Spotlight on contributors and projects that drive the digital forensics community forward.
CyberChef
Data Transformation & Analysis
A universal tool for parsing, decoding, analyzing, and transforming data. Extremely popular in DFIR, malware analysis, and reverse engineering thanks to its flexible drag-and-drop workflow.
View CyberChef on GitHub →KAPE (Kroll Artifact Parser & Extractor)
Windows Artifact Triage & Processing
A powerful forensic triage tool used worldwide for rapid collection and automated processing of Windows artifacts. Supported by a rich ecosystem of community-developed modules and targets.
View KAPE on GitHub →OSINT Framework
Open Source Intelligence Framework
One of the most widely used OSINT collections on the web. Its structured, node-based format has inspired countless investigative frameworks and training programs.
View OSINT Framework on GitHub →Volatility Foundation
Memory Forensics Framework
The backbone of memory forensics worldwide. Volatility 3 brings modular analysis and support for modern OS memory formats.
View volatility3 on GitHub →DFIR GitHub Hall of Fame- USERS
Spotlight on contributors and projects that drive the digital forensics community forward.
Alexis Brignoni (abrignoni)
Mobile Device Forensics
Developer of ALEAPP, iLEAPP, and other essential mobile artifact parsers that transform raw data into structured forensic evidence for various different devices and operating systems.
View Alexis Brignoni's GitHub →Brian Carrier (bcarrier)
Digital Forensics Research & Artifact Development
Creator of The Sleuth Kit and Autopsy, two of the most widely used forensic tools in the world. Through his GitHub and leadership at Sleuth Kit Labs, his work powers investigations across law enforcement, government, academia, and private industry.
View Brian Carrier's GitHub →Christian Peter (prosch88)
Windows & System Artifact Forensics
Developer and researcher focused on Windows system artifacts, registry analysis, and forensic tooling. His work enhances deep system insight and supports forensic investigations involving low-level OS behavior.
View Christian Peter’s GitHub →Eric Zimmerman (EricZimmerman)
Windows Artifact Forensics
Creator of RECmd, MFTECmd, AmCacheParser, ShellBags Explorer, KAPE parsers, and many other must-have Windows forensic tools used globally in DFIR investigations.
View Eric Zimmerman's GitHub →Charlie Rubisoff (NorthLoop Forensics)
Digital Forensics Research & Artifact Development
A modern DFIR-focused research and tooling group known for high-quality analysis work, training content, and contributions to the understanding of Windows and application-level artifacts. Their open-source work and documentation push the DFIR community forward.
Visit NorthLoop Forensics on GitHub →DFIR GitHub Live Activity
Real-time updates from key DFIR developers and forensic tool maintainers.
Loading latest events...