About SOLVE-IT

The SOLVE-IT knowledge base (Systematic Objective-based Listing of Various Established digital Investigation Techniques) is conceptually inspired by MITRE ATT&CK and captures digital forensic techniques that can be used in investigations. It includes details about each technique, examples, potential ways the technique can go wrong (weaknesses), and potential mitigations to either avoid, detect, or minimize the consequences of a weakness if it does occur.

SOLVE-IT was introduced at DFRWS EU 2025. The associated academic paper in FSI:Digital Investigation can be cited as:

Hargreaves, C., van Beek, H., Casey, E., SOLVE-IT: A proposed digital forensic knowledge base inspired by MITRE ATT&CK, Forensic Science International: Digital Investigation, Volume 52, Supplement, 2025, 301864, ISSN 2666-2817, https://doi.org/10.1016/j.fsidi.2025.301864

This is a community project so please see the contribute page for information on how to contribute to the knowledge base.

Structure

Learn about the core concepts — objectives, techniques, weaknesses, and mitigations — and how the knowledge base is organised.

Contributors

The individuals who have contributed to the SOLVE-IT knowledge base.

Supporters

Organisations that provide support to the SOLVE-IT project.

Adopters

Organisations using SOLVE-IT.

Changelog

Recent changes to the knowledge base data, structure, and features.