River City Digital Forensics logo
River City Digital Forensics

DFIR Tools · Research · Blog
Tools

DFIR tools built to support practical investigation workflows

Use this page as the public-facing catalog for your applications. Each card can expand into screenshots, release notes, requirements, and documentation links.

Flagship

Interactive Sign-In Analyzer

Purpose-built for triage, scoping, and investigative narrative support using Microsoft 365 sign-in telemetry.

  • High-signal detector summaries
  • Timeline and narrative support
  • Designed for investigator usability

View downloads

Telemetry

Uniified Audit Log Analyzer

Focused on audit log review with a clean interface for rapid filtering, IOC identification, and artifact-based investigation.

  • Audit telemetry workflow support
  • Investigator-oriented filtering
  • Reporting-friendly outputs

View downloads

Coming Soon

Future Research Utilities

Reserve this space for acquisition helpers, triage aids, parsers, forensic workflow accelerators, and experimental releases.

  • Standalone utilities
  • Case support tools
  • Research releases

Read related articles

Suggested content blocks

What to add to each tool page later

  • Overview and investigative use cases
  • Supported data sources or log formats
  • Screenshots or interface previews
  • Release notes and changelog
  • Download package and checksum
Positioning

Why this structure works

It lets the site function both as a trust-building technical portfolio and as a clean release portal. Visitors can understand what each tool does, then download it without hunting through blog posts or generic landing pages.