Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/teamdfir/sift
SIFT
https://github.com/teamdfir/sift
aws cast cast-distro cli forensics issues-only memory-forensics salt-state saltstack sans sift timeline-analysis
Last synced: 2 months ago
JSON representation
SIFT
- Host: GitHub
- URL: https://github.com/teamdfir/sift
- Owner: teamdfir
- License: mit
- Created: 2014-01-18T19:20:06.000Z (almost 11 years ago)
- Default Branch: master
- Last Pushed: 2024-02-14T21:38:23.000Z (10 months ago)
- Last Synced: 2024-09-30T11:23:51.123Z (2 months ago)
- Topics: aws, cast, cast-distro, cli, forensics, issues-only, memory-forensics, salt-state, saltstack, sans, sift, timeline-analysis
- Homepage:
- Size: 29.3 KB
- Stars: 484
- Watchers: 73
- Forks: 67
- Open Issues: 23
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- ForensicsTools - SANS Investigative Forensics Toolkit (sift) - Linux distribution for forensic analysis (Challenges / Distributions)
- Awesome-Bioinformatics - SIFT - Predicts whether an amino acid substitution affects protein function. [ [paper-2003](https://pubmed.ncbi.nlm.nih.gov/12824425) | [web](http://sift.jcvi.org) ] (Next Generation Sequencing / Variant Prediction/Annotation)
- awesome-forensics - SANS Investigative Forensics Toolkit (sift) - Linux distribution for forensic analysis (Tools / Distributions)
- Awesome-Forensics - SANS Investigative Forensics Toolkit (sift) - Linux distribution for forensic analysis (Tools / Distributions)
README
# SIFT
This is a metadata repository that is primarily used for discussiosn and issue tracking.
- [cast](https://github.com/ekristen/cast) -- installer cli
- [saltstack](https://github.com/teamdfir/sift-saltstack) -- states that actually do the work
- [packer](https://github.com/teamdfir/sift-packer) -- builds machine images using the above tools
- [package-scripts](https://github.com/teamdfir/package-scripts) -- builds certain packages hosted in [SIFT PPA](https://launchpad.net/~sift)
## Supported Distros
* 20.04 Ubuntu (Focal)
* 22.04 Ubuntu (Jammy)
## Installation
[Cast](https://github.com/ekristen/cast) is the replacement to the [SIFT CLI](https://github.com/sans-dfir/sift-cli). While the SIFT CLI should continue to work it is officially deprecated as of March 1, 2023 and will no longer be guaranteed to work after that date.
You must first install the CLI tool, then you can install SIFT.
```console
sudo cast install teamdfir/sift-saltstack
```
## Cloud Providers
### AWS
These are the latest AMIs build from [sift-packer](https://github.com/sans-dfir/sift-packer)
**Note:** these are headless, as in no GUI, it installs the server variant of SIFT.
### 22.04 Jammy Images
**Default User:** `sansforensics`
```
Account ID: 469658012540
Name: sans-sift-workstation-server-20240214124249
Regions:
- eu-west-1 -> ami-02b8801c5dd864319
- ap-southeast-1 -> ami-0a89fcec3f0d654f9
- us-west-1 -> ami-0443a8664211c05f0
- us-east-2 -> ami-04d0b46b95f792b67
- ap-northeast-3 -> ami-049c6d359a6b056cc
- eu-north-1 -> ami-00c969795f1510155
- ap-northeast-2 -> ami-0d87d93a9fa3793e2
- ca-central-1 -> ami-075fc1cf4efb61867
- eu-west-3 -> ami-073eaa4931bcd39eb
- eu-west-2 -> ami-0c494a1b9f9e341b1
- eu-central-1 -> ami-0a50e71994d4ec832
- ap-southeast-2 -> ami-0a52aae3e9bb5ff98
- us-west-2 -> ami-0a6077f47a38022b7
- us-east-1 -> ami-033658932fa06b1e6
- ap-northeast-1 -> ami-09176a630354099ad
```
### 20.04 Focal Images
Built On: March 2nd, 2022
**Default User:** `sansforensics`
```
ap-northeast-1: ami-00378014d524eee9c
ap-northeast-2: ami-06408b1c23cad3f8b
ap-northeast-3: ami-0cf5998c0f77e349d
ap-southeast-1: ami-0db8ec4279e4f27ca
ap-southeast-2: ami-04c740d52b4a32959
eu-central-1: ami-06535b5a0f7d99f4c
eu-north-1: ami-049c42f0a1ea82701
eu-west-1: ami-01f1035b96448b73b
eu-west-2: ami-0407016f8aa79ea7c
eu-west-3: ami-0c444654c3cb65700
us-east-1: ami-0d52daefbb3dad017
us-east-2: ami-08faa4091f9e4121d
us-west-1: ami-0bf84579f13473e79
us-west-2: ami-0b9d5c33ff8f8ca7d
```