artifact-collection
CommunityCollect and preserve forensic artifacts.
Data & Analytics#cross-platform#endpoint#forensics#incident-response#artifact-collection#chain-of-custody#evidence-packaging
AuthorSherifEldeeb
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Collects and preserves digital forensic artifacts from endpoints to support incident response, investigations, and legal proceedings, ensuring evidence integrity.
Core Features & Use Cases
- Volatile Data Collection: RAM, processes, and network state from live systems
- Disk Artifact Collection: Registry, logs, browser data, and configuration snapshots
- Chain of Custody: Generates and maintains an auditable handling record
- Remote and selective collection: Gather artifacts from remote hosts or targeted types
- Verification & packaging: Hashing and packaging for integrity
- Cross-platform support: Windows, Linux, macOS artifact collection
Quick Start
To begin, initialize the appropriate collector (e.g., WindowsCollector) and run the collection steps for volatile and disk artifacts, then generate a custody and evidence package as needed.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: artifact-collection Download link: https://github.com/SherifEldeeb/agentskills/archive/main.zip#artifact-collection Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.