Alternatives and similar repositories for Packrat

Users that are interested in Packrat are comparing it to the libraries listed below

• forensicmatt / PyWindowsThingies
  Windows Thingies in Python for live use.
  ☆24Updated 6 years ago
• woanware / lookuper
  Looks stuff up (MD5, SHA256, IP, Domains, URL's, strings e.g. mutexes)...
  ☆35Updated 8 years ago
• swisscom / PowerSponse
  PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.
  ☆40Updated 3 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆36Updated 6 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆138Updated 3 years ago
• woanware / autorunner
  Emulates the Sysinternals Autoruns tool, but for DFIR purposes e.g. multi user processing
  ☆55Updated 6 years ago
• piesecurity / WindowsEventsToCSVTimeline
  Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
  ☆32Updated 7 years ago
• counteractive / incident-response-collector
  ☆17Updated 5 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 7 years ago
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 6 years ago
• mgreen27 / Invoke-LiveResponse
  Invoke-LiveResponse
  ☆150Updated 3 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆41Updated 9 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆80Updated 3 years ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆162Updated 5 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆71Updated 3 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated last month
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• keydet89 / Tools
  Tools from WFA 4/e, timeline tools, etc.
  ☆145Updated last year
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆56Updated 5 years ago
• Silv3rHorn / 4n6_misc
  Miscellaneous Scripts
  ☆17Updated 5 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆64Updated 4 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆71Updated 8 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆58Updated 3 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆45Updated 2 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆25Updated 5 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆57Updated 3 years ago
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆25Updated 2 years ago
• deeso / fleet-deployment
  ☆15Updated 6 years ago