Alternatives and similar repositories for MISC

Users that are interested in MISC are comparing it to the libraries listed below

• dfircheatsheet / dfircheatsheet.github.io
  ☆67Updated last month
• MalTrakLab / purple-team-cloud-lab
  Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them
  ☆29Updated last year
• CyberCastle-Blueteam / OpenThreatDetectionRules
  A collection of open source threat detection rules created by Cyber Castle's team.
  ☆14Updated 3 years ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆147Updated 7 months ago
• RJC497 / IoT-Digital-Forensics-Course
  IoT Digital Forensics Course with hands-on labs
  ☆231Updated 2 months ago
• mamun-sec / decap
  ☆34Updated 2 years ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆76Updated 2 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆34Updated 2 years ago
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆55Updated last year
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated 2 years ago
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆78Updated 4 years ago
• Digital-Forensics-Discord-Server / TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts
  The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…
  ☆217Updated 9 months ago
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆51Updated 5 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆57Updated 3 years ago
• solomonsonya / Xavier_MemoryAnalysis_Framework
  Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
  ☆45Updated 3 years ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆82Updated 3 years ago
• LetsDefend / Phishing-Email-Analysis
  Useful resources about phishing email analysis
  ☆87Updated 9 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆130Updated 3 years ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆120Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆88Updated 2 years ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated 8 months ago
• Inovasys-CS / EDI
  ☆17Updated 3 weeks ago
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 7 years ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆115Updated 2 years ago
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆97Updated 2 years ago
• cocopollo / HunterM
  macOS Artifacts
  ☆33Updated 8 months ago
• 0xHasanM / regexplore
  Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite
  ☆17Updated 2 years ago
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆177Updated 6 months ago