Dexter

Your friendly forensics expert.

Dexter is a forensics acquisition framework designed to be extensible and secure.

Dexter runs as an agent backed by S3. Investigators use Dexter on the command line to issue investigations and retrieve reports. Investigations define facts that must be true about the systems in scope, and tasks that will run on the host. After tasks are run, Dexter generates reports that are individually encrypted back to the investigators that are authorized to view the data.

Architecture Overview

Install & Use

Copyright (C) 2018 hkparker

Source: https://github.com/coinbase/