Malware detection tool for Windows PE files based on DFIR ORC data
☆11Mar 7, 2026Updated 2 weeks ago
Alternatives and similar repositories for DECODE
Users that are interested in DECODE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Jun 27, 2025Updated 8 months ago
- My Linux profiles built for Volatility 2/3☆10Oct 11, 2025Updated 5 months ago
- Offensive Web is a documentation website about web security research, bypass and new exploitation techniques.☆33Feb 14, 2026Updated last month
- MFT and USN parser that allows direct extraction in filesystem timeline format (mactime), dump all resident files in the MFT in their ori…☆13May 10, 2023Updated 2 years ago
- LILO based Pulse Secure appliance disk image decryptor☆13Mar 20, 2024Updated 2 years ago
- Malware detection demo using machine learning.☆25Feb 9, 2018Updated 8 years ago
- PyDFIRRam is a Python library leveraging Volatility 3 to simplify and enhance memory forensics. It streamlines the research, parsing, and…☆29Sep 17, 2024Updated last year
- Outil de triage automatisé de différents types de collectes d'artefacts.☆18Dec 8, 2025Updated 3 months ago
- Qovery Github action allowing to deploy application.☆12Aug 1, 2023Updated 2 years ago
- Guide journalisation Microsoft☆70Feb 23, 2026Updated last month
- Extensible, open-source solution for automated file sandboxing and analysis☆27Mar 17, 2026Updated last week
- lnk_parser is a full rust implementation to parse windows LNK files☆23Feb 17, 2026Updated last month
- ☆21Jul 4, 2022Updated 3 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Oct 23, 2019Updated 6 years ago
- Live forensic artifacts collector☆172Jul 5, 2024Updated last year
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆171Updated this week
- [GITLAB MIRROR] Ludus is a system to build easy to use cyber environments for testing and development.☆180Updated this week
- A curated resource list of adversarial attacks and defenses for Windows PE malware detection.☆75Sep 2, 2022Updated 3 years ago
- Modbus library for PHP (Google code follower)☆72Nov 7, 2022Updated 3 years ago
- A terminal UI to monitor and query Elasticsearch.☆12May 10, 2024Updated last year
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆66Jun 4, 2025Updated 9 months ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆51Jan 9, 2026Updated 2 months ago
- Black cat magic ฅ(^・ω・^ฅ ✿)☆55Sep 28, 2022Updated 3 years ago
- Basic SDK for Intezer Analyze API 2.0☆32Mar 11, 2026Updated last week
- Sudoless alternative to powermetrics for Apple Silicon; realtime CPU & GPU frequency, volts, usage, etc.☆93May 20, 2024Updated last year
- ☆18Jun 10, 2025Updated 9 months ago
- Allows to send notes taken with a reMarkable2 tablet to a Notion database using a Gmail address.☆31Jan 20, 2023Updated 3 years ago
- OpenSSH Vulnerabilities Scanner: Bulk Scanning Tool for 21 different OpenSSH CVEs.☆10Apr 29, 2025Updated 10 months ago
- grap: define and match graph patterns within binaries☆155May 5, 2022Updated 3 years ago
- Outil de récupération automatique des données de l'Active Directory / Automated tool for dumping Active Directory data☆275Jan 6, 2026Updated 2 months ago
- Note-taking repository for AWS Certified Cloud Practitioner course (CLF-CO2)☆14Feb 2, 2024Updated 2 years ago
- ☆12Apr 3, 2014Updated 11 years ago
- Kernel source tree for Raspberry Pi Foundation-provided kernel builds. Issues unrelated to the linux kernel should be posted on the commu…☆10Jan 8, 2026Updated 2 months ago
- ☆21Updated this week
- CTF Write-Ups☆19Jan 19, 2020Updated 6 years ago
- Python tool to check rootkits in Windows kernel☆207Aug 20, 2025Updated 7 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆12Aug 14, 2025Updated 7 months ago
- AQUA-Tk = Audio QUality Assessment-Toolkit. (In development)☆103Dec 8, 2025Updated 3 months ago
- Gets currently logged-on users on domain computers, to see if they are local admins or not.☆10Aug 14, 2019Updated 6 years ago