Alternatives and similar repositories for DFIR-LABS

Users that are interested in DFIR-LABS are comparing it to the libraries listed below

• dbissell6 / DFIR
  This is a repository dedicated to the DFIR journey. Contains notes, reflections and links to tools.
  ☆80Updated 3 weeks ago
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆101Updated 2 months ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆144Updated 3 months ago
• lasq88 / LearingMaterials
  Different learning materials
  ☆227Updated 3 months ago
• jstrosch / learning-malware-analysis
  This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be…
  ☆647Updated 11 months ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆111Updated this week
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆218Updated 2 weeks ago
• LetsDefend / incident-response-playbooks
  ☆180Updated last year
• vm32 / Digital-Forensics-Script-for-Linux
  Advanced Bash script designed for conducting digital forensics on Linux systems
  ☆142Updated last year
• Psmths / windows-forensic-artifacts
  Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
  ☆361Updated 10 months ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆341Updated 7 months ago
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆160Updated last year
• S3N4T0R-0X0 / APT-Attack-Simulation
  This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…
  ☆672Updated 2 months ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated 9 months ago
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆196Updated 11 months ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆116Updated 2 weeks ago
• CyberSecurityUP / Red-Team-Exercises
  ☆495Updated last week
• k1nd0ne / VolWeb
  A centralized and enhanced memory analysis platform
  ☆464Updated last month
• curated-intel / Attribution-to-IP
  A collection of methods to learn who the owner of an IP address is.
  ☆160Updated 2 weeks ago
• digitalisx / awesome-memory-forensics
  A curated list of awesome Memory Forensics for DFIR
  ☆458Updated 4 months ago
• Pennyw0rth / NetExec-Lab
  Lab used for workshop and CTF
  ☆250Updated last month
• cyber6l / eCTHP-Notes
  ☆22Updated 10 months ago
• adanalvarez / AWS-malware-lab
  Creation of a laboratory for malware analysis in AWS
  ☆100Updated 2 years ago
• archcloudlabs / HackSpaceCon_Malware_Analysis_Course
  Free training course offered at Hack Space Con 2023
  ☆138Updated 2 years ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆101Updated last year
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆258Updated this week
• 0xn1k5 / Red-Teaming
  Collection of Notes and CheatSheets used for Red teaming Certs
  ☆387Updated 2 years ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆83Updated 7 months ago
• cyb3rmik3 / MDE-DFIR-Resources
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆393Updated 5 months ago
• bluecapesecurity / PWF
  Practical Windows Forensics Training
  ☆667Updated last year