forensics
CommunityUncover digital evidence and build timelines.
Legal & Compliance#incident response#timeline reconstruction#forensics#ioc#chain of custody#digital evidence
Authorjaskaranhundal
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill reconstructs digital timelines, identifies evidence, and guides preservation for security incidents, ensuring legally defensible investigations.
Core Features & Use Cases
- Timeline Reconstruction: Creates a chronological sequence of events from various digital artifacts.
- Evidence Preservation: Provides guidance on collecting and preserving digital evidence with chain-of-custody.
- IOC Extraction: Identifies Indicators of Compromise (IPs, domains, hashes) related to the incident.
- Use Case: After a confirmed breach, use this Skill to analyze logs and memory dumps to determine the initial entry point, attacker actions, and data exfiltration, producing a detailed report for legal and incident response teams.
Quick Start
Analyze the provided incident details to reconstruct the attacker's timeline and identify key forensic artifacts.
Dependency Matrix
Required Modules
avmlpsssawscliftk-imagervolatilitylecmdhayabusakapevelociraptormagnet-axiomzeeknetflow
Components
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: forensics Download link: https://github.com/jaskaranhundal/usap-skills/archive/main.zip#forensics Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.