Alternatives and similar repositories for investigations

Users that are interested in investigations are comparing it to the libraries listed below

• mvt-project / mvt
  MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
  ☆11,539Updated last week
• cisagov / CHIRP
  A DFIR tool written in Python.
  ☆1,050Updated 4 years ago
• timb-machine / linux-malware
  Tracking interesting Linux (and UNIX) malware. Send PRs
  ☆1,190Updated 3 months ago
• curated-intel / Ukraine-Cyber-Operations
  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for…
  ☆933Updated 2 years ago
• verymeticulous / wikAPEdia
  A central place for apes to learn about stonks. This is not financial advice.
  ☆410Updated 3 years ago
• f0cker / crackq
  CrackQ: A Python Hashcat cracking queue system
  ☆937Updated 11 months ago
• bee-san / Search-That-Hash
  🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
  ☆1,378Updated 5 months ago
• vanhoefm / fragattacks
  ☆1,275Updated 4 months ago
• Forescout / project-memoria-detector
  ☆320Updated 4 years ago
• GuidoBartoli / sherloq
  An open-source digital image forensic toolset
  ☆2,972Updated last month
• obsidianforensics / unfurl
  Extract and Visualize Data from URLs using Unfurl
  ☆687Updated this week
• Malfrats / xeuledoc
  Fetch information about a public Google document.
  ☆956Updated last year
• TheParmak / conti-leaks-englished
  Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
  ☆617Updated 3 years ago
• AsuharietYgvar / AppleNeuralHash2ONNX
  Convert Apple NeuralHash model for CSAM Detection to ONNX.
  ☆1,537Updated 4 years ago
• AssoEchap / stalkerware-indicators
  Indicators of stalkerware apps
  ☆318Updated last week
• austinsonger / Incident-Playbook
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,499Updated last year
• mandiant / ThreatPursuit-VM
  Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysi…
  ☆1,281Updated 2 years ago
• Neo23x0 / Raccine
  A Simple Ransomware Vaccine
  ☆969Updated last year
• liamg / gitjacker
  🔪 Leak git repositories from misconfigured websites
  ☆1,584Updated 2 years ago
• alexandreborges / malwoverview
  Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…
  ☆3,397Updated last month
• intelowlproject / IntelOwl
  IntelOwl: manage your Threat Intelligence at scale
  ☆4,289Updated this week
• cisagov / log4j-scanner
  log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…
  ☆1,283Updated 2 years ago
• mac4n6 / APOLLO
  Apple Pattern of Life Lazy Output'er
  ☆605Updated last year
• abrignoni / iLEAPP
  iOS Logs, Events, And Plist Parser
  ☆926Updated this week
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆730Updated 3 years ago
• samyk / slipstream
  NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewa…
  ☆1,949Updated 2 years ago
• evilsocket / ditto
  A tool for IDN homograph attacks and detection.
  ☆738Updated 4 years ago
• thinkst / canarytokens
  Canarytokens helps track activity and actions on your network.
  ☆1,923Updated this week
• nadimkobeissi / appleprivacyletter
  An open letter against Apple's new privacy-invasive client-side content scanning.
  ☆631Updated 2 years ago
• mesquidar / ForensicsTools
  A list of free and open forensics analysis tools and other resources
  ☆1,409Updated 4 months ago