N. Schmidt

Digital forensics specialist focused on building tools and workflows to streamline investigations, improve automation, and support incident response teams.

As a digital forensics specialist and tool developer, I focus on automation, analysis support, and modular workflows.
Below is a layout: single selection of my open-source tools developed specifically for DFIR and malware analysis use cases.

🔧 DFIR Installer

An automated installer for essential DFIR tools on Linux (e.g., Volatility, Plaso, Autopsy, and many more).
It provides a fully functional and consistent forensic analysis environment with a single command.

🔗 GitHub: n0raitor/dfir-installer

🧩 DFIR Installer Selector

Tool to create .conf files for dfir-installer using a GUI

🔗 GitHub: n0raitor/dfir-installer-selector

🦠 Malware Analysis Scripts

A collection of Python scripts designed to support both static and dynamic malware analysis, including file inspection, YARA integration, and PE dumping.

🔗 GitHub: n0raitor/Malware-Analysis-Scripts

📊 kapexplaso-pp

A post-processing tool for KAPE output, allowing timeline data to be more efficiently analyzed and visualized. Particularly useful for incident response timelines. KAPE x Plaso = Hero - A Automated experience of processing KAPE

🔗 GitHub: n0raitor/kapexplaso-pp

Other Tools

🔗 GitHub: n0raitor