Tools for Incident Response and Malware Analysis
☆11Feb 9, 2025Updated last year
Alternatives and similar repositories for DFIR-Malware-Analysis
Users that are interested in DFIR-Malware-Analysis are comparing it to the libraries listed below
Sorting:
- CyberChef update scripts in PowerShell & Bash☆17Apr 22, 2024Updated last year
- Tools and scripts to deploy and manage OpenRelik instances☆16Updated this week
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 7 months ago
- Quick ESXi Log Parser☆29Oct 20, 2025Updated 4 months ago
- A Windows Event Log MCP☆40Aug 25, 2025Updated 6 months ago
- A utility to process the iOS Cache.sqlite database and create a timelined KML map for use in Google Earth☆30Dec 3, 2024Updated last year
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆162Apr 6, 2025Updated 10 months ago
- Contains compiled binaries of Volatility☆36May 18, 2025Updated 9 months ago
- Metasploit_postgresql_database_connection_fix☆12Jan 30, 2019Updated 7 years ago
- Python client for McAfee ePolicy Orchestrator☆15Mar 12, 2021Updated 4 years ago
- VANET using OMNET++, SUMO, Open Street Map, Veins, Inet☆11May 14, 2024Updated last year
- The SOLVE-IT knowledge base for digital forensics☆60Updated this week
- L.I.A.M is an open source case management system for digital forensics labs. Law-Enforcement Investigations and Asset Management☆13Jul 4, 2025Updated 8 months ago
- RuleVis is a powerful analysis tool that transforms your Wazuh ruleset into a dynamic, interactive force-directed graph. It helps you vis…☆24Nov 12, 2025Updated 3 months ago
- ☆175Aug 25, 2023Updated 2 years ago
- The ultimate streamline for Volatility 3. Speed up process of memory artifacts extraction phase☆14Dec 19, 2024Updated last year
- rShellZ s a linux reverse-shell & exploitation assistance framework. With lots of payload and post exploitation modules.☆14Dec 13, 2023Updated 2 years ago
- Notes on Active Directory analysis and exploitation☆11Mar 7, 2019Updated 6 years ago
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Apr 25, 2025Updated 10 months ago
- Browser History Histogram -- module for the Autopsy Forensic Browser☆11Sep 15, 2019Updated 6 years ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆19May 9, 2025Updated 9 months ago
- OSCP material tools and helpful scripts.☆11Mar 14, 2025Updated 11 months ago
- Python script for carving Bitlocker VMK keys☆26Feb 4, 2026Updated last month
- A Docker lab integrating Splunk SIEM with Ollama LLM via Model Context Protocol for AI-powered security operations. Features Promptfoo e…☆18Aug 17, 2025Updated 6 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- Multi-threading Leaks/Intelligence file parser☆15Feb 16, 2026Updated 2 weeks ago
- Tools and Binaries to use with KAPE☆13Aug 13, 2019Updated 6 years ago
- Pipe stuff to Neo4j☆10Jun 4, 2020Updated 5 years ago
- ☆10Nov 21, 2023Updated 2 years ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 8 months ago
- Penetration Testing Methodology - short notes☆11May 30, 2015Updated 10 years ago
- android-sms2csv.py extract SMS messages from Android backup files☆13Jun 19, 2020Updated 5 years ago
- /ˈhäjˌpäj/ "a confused mixture."☆13Updated this week
- A Binary Ninja plugin to help find the addresses and lengths of strings in Rust binaries.☆24Jan 11, 2026Updated last month
- AI modular structure that provides automation-based attack and penetration☆14May 10, 2024Updated last year
- Turn a supported list of filetypes (e.g. .docx) into a markdown structured text file. Also optionally defangs indicators and extract text…☆12Feb 5, 2026Updated 3 weeks ago