Alternatives and similar repositories for DFIR-LABS:

Users that are interested in DFIR-LABS are comparing it to the libraries listed below

• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆147Updated 5 months ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆325Updated 4 months ago
• dbissell6 / DFIR
  This is a repository dedicated to the DFIR journey. Contains notes, reflections and links to tools.
  ☆64Updated this week
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆156Updated last year
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆104Updated last month
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆198Updated last month
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆151Updated 9 months ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• BushidoUK / Operational-Security-101
  A repository of advice and guides to share with friends and family who are concerned about their safety during online activities and the …
  ☆120Updated last year
• LetsDefend / incident-response-playbooks
  ☆167Updated 11 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆118Updated last month
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated 2 years ago
• archcloudlabs / HackSpaceCon_Malware_Analysis_Course
  Free training course offered at Hack Space Con 2023
  ☆137Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆92Updated 3 months ago
• vm32 / Digital-Forensics-Script-for-Linux
  Advanced Bash script designed for conducting digital forensics on Linux systems
  ☆138Updated 10 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆118Updated 10 months ago
• arosenmund / defcon32_dissecting_defeating_ransomwares_evasion
  Dissecting and Defeating Ransomware's Evasion Tactics Defcon 32
  ☆11Updated 6 months ago
• OWNsecurity / GWForensic
  DFIR project to collect and analyze events in Google Workspace
  ☆12Updated 10 months ago
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆119Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆186Updated 2 weeks ago
• dodo-sec / Malware-Analysis
  ☆133Updated last year
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆74Updated 3 months ago
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆193Updated 8 months ago
• LOLAPPS-Project / LOLAPPS
  LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.
  ☆180Updated last week
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆193Updated this week
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated last year
• CyberSecurityUP / Red-Team-Exercises
  ☆416Updated this week
• sheimo / awesome-lolbins-and-beyond
  A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.
  ☆141Updated 4 months ago
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆180Updated 2 months ago