Alternatives and similar repositories for investigations

Users that are interested in investigations are comparing it to the libraries listed below

• mvt-project / mvt
  MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
  ☆11,650Updated this week
• curated-intel / Ukraine-Cyber-Operations
  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for…
  ☆935Updated 2 years ago
• verymeticulous / wikAPEdia
  A central place for apes to learn about stonks. This is not financial advice.
  ☆410Updated 3 years ago
• vanhoefm / fragattacks
  ☆1,277Updated 5 months ago
• cisagov / CHIRP
  A DFIR tool written in Python.
  ☆1,053Updated 4 years ago
• Forescout / project-memoria-detector
  ☆321Updated 4 years ago
• timb-machine / linux-malware
  Tracking interesting Linux (and UNIX) malware. Send PRs
  ☆1,194Updated 4 months ago
• TheParmak / conti-leaks-englished
  Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
  ☆617Updated 3 years ago
• AssoEchap / stalkerware-indicators
  Indicators of stalkerware apps
  ☆322Updated last month
• nadimkobeissi / appleprivacyletter
  An open letter against Apple's new privacy-invasive client-side content scanning.
  ☆631Updated 2 years ago
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,127Updated 2 years ago
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆731Updated 3 years ago
• AsuharietYgvar / AppleNeuralHash2ONNX
  Convert Apple NeuralHash model for CSAM Detection to ONNX.
  ☆1,538Updated 4 years ago
• bee-san / Search-That-Hash
  🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
  ☆1,383Updated 7 months ago
• f0cker / crackq
  CrackQ: A Python Hashcat cracking queue system
  ☆939Updated last year
• nickboucher / trojan-source
  Trojan Source: Invisible Vulnerabilities
  ☆1,269Updated 2 years ago
• GuidoBartoli / sherloq
  An open-source digital image forensic toolset
  ☆2,978Updated 2 months ago
• samyk / slipstream
  NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewa…
  ☆1,950Updated 2 years ago
• alecmuffett / real-world-onion-sites
  This is a list of substantial, commercial-or-social-good mainstream websites which provide onion services.
  ☆1,963Updated this week
• SpyGuard / SpyGuard
  SpyGuard is a forked and enhanced version of TinyCheck. SpyGuard's main objective is to detect signs of compromise by monitoring network …
  ☆446Updated last year
• AmnestyTech / covid19-apps
  Technical notes from investigations into COVID-19 contact-tracing apps
  ☆50Updated 5 years ago
• Neo23x0 / Raccine
  A Simple Ransomware Vaccine
  ☆970Updated last year
• austinsonger / Incident-Playbook
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,509Updated last year
• NCSC-NL / log4shell
  Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
  ☆1,892Updated 3 years ago
• levlesec / lockup
  A proof-of-concept Android application to detect and defeat some of the Cellebrite UFED forensic toolkit extraction techniques.
  ☆342Updated last year
• KasperskyLab / iShutdown
  ☆445Updated last year
• oskarsve / ms-teams-rce
  ☆1,113Updated 4 years ago
• Malfrats / xeuledoc
  Fetch information about a public Google document.
  ☆969Updated last year
• jonaslejon / malicious-pdf
  💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
  ☆3,485Updated 3 months ago
• evilsocket / ditto
  A tool for IDN homograph attacks and detection.
  ☆739Updated 4 years ago