Alternatives and similar repositories for investigations

Users that are interested in investigations are comparing it to the libraries listed below

• mvt-project / mvt
  MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
  ☆11,925Updated this week
• cisagov / CHIRP
  A DFIR tool written in Python.
  ☆1,052Updated 4 years ago
• vanhoefm / fragattacks
  ☆1,281Updated 7 months ago
• curated-intel / Ukraine-Cyber-Operations
  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for…
  ☆936Updated 2 years ago
• timb-machine / linux-malware
  Tracking interesting Linux (and UNIX) malware. Send PRs
  ☆1,197Updated 7 months ago
• TheParmak / conti-leaks-englished
  Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
  ☆613Updated 3 years ago
• AsuharietYgvar / AppleNeuralHash2ONNX
  Convert Apple NeuralHash model for CSAM Detection to ONNX.
  ☆1,536Updated 4 years ago
• EFForg / crocodilehunter
  Taking one back for Steve Irwin 　 　 (๑•̀ㅂ•́)و
  ☆1,040Updated 2 years ago
• intelowlproject / IntelOwl
  IntelOwl: manage your Threat Intelligence at scale
  ☆4,373Updated this week
• AssoEchap / stalkerware-indicators
  Indicators of stalkerware apps
  ☆333Updated 2 months ago
• Neo23x0 / Raccine
  A Simple Ransomware Vaccine
  ☆973Updated 2 years ago
• abrignoni / iLEAPP
  iOS Logs, Events, And Plist Parser
  ☆991Updated last week
• liamg / gitjacker
  🔪 Leak git repositories from misconfigured websites
  ☆1,586Updated this week
• positive-security / send-my
  Upload arbitrary data via Apple's Find My network.
  ☆1,864Updated 2 years ago
• sowdust / tafferugli
  Tafferugli is a Twitter Analysis Framework
  ☆361Updated 3 years ago
• samyk / slipstream
  NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewa…
  ☆1,953Updated 2 years ago
• KasperskyLab / iShutdown
  ☆453Updated last year
• Forescout / project-memoria-detector
  ☆323Updated 4 years ago
• joshhighet / ransomwatch
  the transparent ransomware claim tracker 🥷🏼🧅🖥️
  ☆1,075Updated 5 months ago
• MaximeBeasse / KeyDecoder
  KeyDecoder app lets you use your smartphone or tablet to decode your mechanical keys in seconds.
  ☆3,156Updated last year
• fox-it / dissect
  Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…
  ☆1,055Updated 2 weeks ago
• Jayy001 / Search-That-Hash
  🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
  ☆1,388Updated 9 months ago
• f0cker / crackq
  CrackQ: A Python Hashcat cracking queue system
  ☆938Updated last year
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆730Updated 3 years ago
• ukncsc / SME
  ☆432Updated 3 years ago
• GuidoBartoli / sherloq
  An open-source digital image forensic toolset
  ☆3,056Updated 4 months ago
• VirusTotal / vt-cli
  VirusTotal Command Line Interface
  ☆1,168Updated last month
• KasperskyLab / triangle_check
  ☆524Updated last year
• obsidianforensics / unfurl
  Extract and Visualize Data from URLs using Unfurl
  ☆699Updated 2 months ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,473Updated 3 years ago