See below for a list of Google Workspace Tools.
Tool | Description |
---|---|
ALFA | ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework. |
DriveFS Sleuth | DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based on research that has been performed by mounting different scenarios and noting down the changes in the Google Drive File Stream disk artifacts. |
GAM | Command line management for Google Workspace |
See below for a list of Google Workspace Artifacts.