Tsurugi Linux

Tsurugi is a heavily customized Linux distribution designed to support your DFIR investigations, malware analysis and OSINT (Open Source INTelligence) activities.

In this distribution are included the latest versions of the most famous tools you need to conduct an in-depth forensic or incident response investigation and several special features like device write blocking at kernel level, a dedicated Computer Vision analysis section, an OSINT profile switcher and much more that you can discover in our documentation!

The 64 bit OS is based on "Ubuntu 22.04.3 LTS" version (Long Time Support) to always have an updated and stable system with more supported tools.

The custom kernel is based on 6.9.3 version that implements many new drivers and features. You can use Tsurugi Linux [LAB] in live mode but its main goal is to be installed and became your default forensics lab.

“TSURUGI Linux - the sharpest weapon in your DFIR arsenal”