Alternatives and similar repositories for MISC

Users that are interested in MISC are comparing it to the libraries listed below

• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 4 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆84Updated 2 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆35Updated 2 years ago
• MalTrakLab / purple-team-cloud-lab
  Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them
  ☆29Updated last year
• RJC497 / IoT-Digital-Forensics-Course
  IoT Digital Forensics Course with hands-on labs
  ☆229Updated 5 months ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated 2 years ago
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆97Updated 2 years ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆80Updated 2 years ago
• NoelV11 / DFIR-Training
  Digital Forensics and Incident Response notes and Autopsy tool walkthrough
  ☆11Updated 4 years ago
• CyberCastle-Blueteam / OpenThreatDetectionRules
  A collection of open source threat detection rules created by Cyber Castle's team.
  ☆14Updated 3 years ago
• Inovasys-CS / EDI
  ☆17Updated last month
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆57Updated 3 years ago
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆57Updated last year
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated 10 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated 2 years ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆31Updated 11 months ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆121Updated 2 years ago
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆51Updated 6 years ago
• mamun-sec / decap
  ☆34Updated 2 years ago
• cocopollo / HunterM
  macOS Artifacts
  ☆33Updated 11 months ago
• 0xHasanM / regexplore
  Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite
  ☆18Updated 2 years ago
• RanjitPatil / Static-Dynamic-Malware-Analysis
  ☆13Updated 3 years ago
• joshbrunty / DFIR-Regular-Expressions
  Regular Expressions List used in Digital Forensic Tasks
  ☆93Updated 11 months ago
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 7 years ago
• t3l3m3try / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆131Updated 3 years ago
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆77Updated 4 years ago
• LetsDefend / Phishing-Email-Analysis
  Useful resources about phishing email analysis
  ☆86Updated last year
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆37Updated 8 months ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated 2 years ago
• solomonsonya / Xavier_MemoryAnalysis_Framework
  Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
  ☆46Updated 3 years ago