Update response-tools-resources.md

response-tools-resources.md

@@ -1,31 +1,30 @@
 # Free Resources
+
+## Guides and FAQ
 - NIST Computer Security Incident Handling Guide (800-61r2)
   - https://csrc.nist.gov/publications/detail/sp/800-61/rev-2/final
 - Interfacing with Law Enforcement
   - https://www.sans.org/score/law-enforcement-faq
+
+## Forms and Templates
 - Incident Handling Forms
   - https://www.sans.org/score/incident-forms
+
+## Refernce Material and Cheat Sheets
 - Jai Minton's DFIR Cheat Sheet
   - https://www.jaiminton.com/cheatsheet/DFIR/#persistence-and-automatic-loadrun-reg-keys
 - CISA Incident Response Series
   - https://www.youtube.com/playlist?list=PL-BF3N9rHBLJaSbTRPyWYj56f0m2uDQD7
 - s0cm0nkeys Security Reference Guide
   - https://s0cm0nkey.gitbook.io/s0cm0nkeys-security-reference-guide/
 
-
-# Non-Free Resources
-- SANS Hacker Tools, Techniques, Exploits, and Incident Handling (SEC504)
-  - https://www.sans.org/course/hacker-techniques-exploits-incident-handling
-
-
-# Live Forensics Tools
+## Live Forensics Tools
 - Google Rapid Response (GRR)
   - https://github.com/google/grr
 - Meerkat
   - https://github.com/TonyPhipps/Meerkat
 
-
-# Offline Forensics Tools
+## Offline Forensics Tools
 - log2timeline & Plaso
   - https://github.com/log2timeline/plaso
   - https://digital-forensics.sans.org/media/Plaso-Cheat-Sheet.pdf
@@ -34,5 +33,23 @@
   - http://timesketch.org/
   - https://github.com/google/timesketch
 - Autopsy
+  - https://www.autopsy.com/
+- Timeline Explorer
+  - https://ericzimmerman.github.io/#!index.md
 - apfs-fuse
+  - https://github.com/sgan81/apfs-fuse
+- Hayabusa
+  - https://github.com/Yamato-Security/hayabusa
+- Takanjo
+  - https://github.com/Yamato-Security/takajo
+
+# Non-Free Resources
+
+## Courses
+- SANS Hacker Tools, Techniques, Exploits, and Incident Handling (SEC504)
+  - https://www.sans.org/course/hacker-techniques-exploits-incident-handling
+
+
+
+