DexForensics is a high-performance, browser-based digital forensics simulator designed for blue-team investigation training. It allows analysts to practice DFIR (Digital Forensics and Incident Response) workflows—from artifact hunting and memory analysis to timeline reconstruction and incident reporting—all within a secure, client-side environment.
Part of the Dex Security Suite.
- Interactive Forensics Lab: Simulated disk, memory, and log analysis.
- Artifact Investigation: Deep dive into MFT-style file system trees, EVTX-style logs, and memory hits.
- Dynamic Training Quests: In-browser instruction widget with real-time feedback.
- Professional Reporting: Automated Chain of Custody logging and high-contrast, printable forensic reports.
- STIX 2.1 Export: Export findings as industry-standard STIX bundles for integration with THREAT Intel platforms.
- YARA-Powered Scanning: Simulated signature-based malware detection on the evidence set.
- 100% Client-Side: No data ever leaves your browser. All analysis is performed locally for privacy and speed.
- Framework: Next.js 15+ (App Router)
- Logic: TypeScript
- Styling: Tailwind CSS (Custom Dark Mode)
- Icons: React Icons
- Data Export: XLSX, JSON (STIX 2.1)
- Node.js 18+
- npm / pnpm / yarn
-
Clone the repository:
git clone <repository-url> cd DexForensics
-
Install dependencies:
npm install
-
Run the development server:
npm run dev
-
Build for production:
npm run build
Developed by Dibyanshu Sekhar as part of the Dex Security Suite. This standalone repository is a decoupled version of the original DexForensics laboratory integrated into the Dex Portfolio.
All rights reserved. For educational and promotional use only.