This is a non-IMPACT record, meaning that access to the data is not controlled by IMPACT. For access, see the directions below.

This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.


MIG: Mozilla InvestiGator
External Tool
External Data Source
55 (lowest rank is 55)

Category & Restrictions

cyber defense, forensics


Mozilla's real-time digital forensics and investigation platform.

MIG is a platform to perform investigative surgery on remote endpoints. It enables investigators to obtain information from large numbers of systems in parallel, thus accelerating investigation of incidents and day-to-day operations security. MIG is composed of agents installed on all systems of an infrastructure that are be queried in real-time to investigate the file-systems, network state, memory or configuration of endpoints.

MIG is built in Go and uses a REST API that receives signed JSON messages distributed to agents via RabbitMQ and stored in a Postgres database.
It is:
- Massively Distributed means Fast.
- Simple to deploy and Cross-Platform.
- Secured using OpenPGP.
- Respectful of privacy by never retrieving raw data from endpoints.

Additional Details

joystiq, digital forensics, cybercrime, operations security, mig: mozilla investigator, espionage, application programming interface, inferlink corporation, email authentication, file system, technical communication, data serialization formats, external data source, cryptographic software, pretty good privacy, privacy software, 1344, configuration file, information operations and warfare, json, openpgp