CERT-EDF/generaptor

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CERT-EDF/generaptor)

CERT-EDF / generaptor

CLI generator for Velociraptor offline collector

☆16

Alternatives and similar repositories for generaptor

Users that are interested in generaptor are comparing it to the libraries listed below

Sorting:

NextronSystems / velociraptor-artifacts-thor
View on GitHub
Thor Artifacts for Velociraptor
☆19Dec 2, 2025Updated 3 months ago
huntandhackett / ir-automation
View on GitHub
Incident Response automation scripts
☆16Sep 5, 2025Updated 6 months ago
Velocidex / registry_hunter
View on GitHub
Hunt the windows Registry automatically using VQL
☆14Jan 6, 2026Updated 2 months ago
sooshie / scrape_pdf
View on GitHub
Python script to pull various IOCs from PDFs
☆15Dec 22, 2014Updated 11 years ago
Velocidex / cloudvelo
View on GitHub
An experimental Velociraptor implementation using cloud infrastructure
☆26Dec 2, 2025Updated 3 months ago
knittingirl / CTF-Writeups
View on GitHub
☆10Oct 18, 2024Updated last year
SubashGhimire / Hunting-Queries-and-Detection-Rule-Microsoft-Sentinel-Defender
View on GitHub
KQL Sentinel and Defender Detection and Hunting Queries.
☆16Feb 24, 2026Updated 3 weeks ago
Green-Avocado / CTF
View on GitHub
CTF challenge solutions and writeups
☆11Mar 2, 2024Updated 2 years ago
enrique-paulino / workout-tracker
View on GitHub
🏋️A simple and self-hostable workout tracking web app build with Flask, SQLite, and Docker.
☆20May 26, 2025Updated 9 months ago
Velocidex / pyvelociraptor
View on GitHub
PyVelociraptor contains the python bindings for the Velociraptor API.
☆21Feb 11, 2026Updated last month
johnathanhuutri / CTFWriteup
View on GitHub
☆13Jul 11, 2024Updated last year
socfortress / iris-velociraptorartifact-module
View on GitHub
IRIS Module to Run Any Velociraptor Artifact
☆15Mar 31, 2023Updated 2 years ago
cocomelonc / offzone-2024-malware-persistence-workshop
View on GitHub
OFFZONE 2024 Malware Persistence workshop
☆22Dec 18, 2024Updated last year
adulau / hashlookup-server
View on GitHub
Fast lookup server for NSRL and other hash database used in digital forensic
☆49Jan 26, 2026Updated last month
dwmetz / PSHero
View on GitHub
PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
☆37Jul 11, 2023Updated 2 years ago
dfir-ronin / APT-OpenIOC-Detection-Rules
View on GitHub
This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
☆26Oct 3, 2023Updated 2 years ago
bridgeythegeek / ndispktscan
View on GitHub
NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.
☆12Oct 23, 2015Updated 10 years ago
piotrcki / airgap-os
View on GitHub
Offline amnesic live Linux distribution
☆14Mar 8, 2025Updated last year
nchacha / Keylogger
View on GitHub
Repository for the Udemy Course: "Build an Advanced Keylogger using C++ for Ethical Hacking!" with instructor Ermin Kreponic
☆13Feb 1, 2018Updated 8 years ago
MalwareCube / Email-IOC-Extractor
View on GitHub
A Python script for extracting IP addresses, URLs, headers, and attachments from .eml files. Additional functionalities include defanging…
☆44Oct 10, 2024Updated last year
reverseame / APOTHEOSIS
View on GitHub
A specialized implementation of the Hierarchical Navigable Small World (HNSW) data structure adapted for efficient nearest neighbor looku…
☆11Mar 12, 2026Updated last week
ANSSI-FR / orc2timeline
View on GitHub
orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
☆34Jun 27, 2025Updated 8 months ago
WithSecureLabs / FLAIR
View on GitHub
F-Secure Lightweight Acqusition for Incident Response (FLAIR)
☆16Jul 5, 2021Updated 4 years ago
jeantil / openstack-swift-keystone-docker
View on GitHub
A docker image running both swift and keystone openstack services for TESTING purposes
☆13Feb 28, 2019Updated 7 years ago
mgreen27 / DetectRaptor
View on GitHub
A repository to share publicly available Velociraptor detection content
☆196Mar 15, 2026Updated last week
dfir-scripts / siftgrab
View on GitHub
☆70Feb 15, 2026Updated last month
WqyJh / qwingraph_qt5
View on GitHub
An patch porting qwingraph (wingraph written in qt4) to qt5.
☆10Aug 21, 2019Updated 6 years ago
google / dfiq
View on GitHub
DFIQ is a collection of investigative questions and the approaches for answering them
☆301Mar 10, 2026Updated last week
quarkslab / tpmee
View on GitHub
☆11Apr 7, 2022Updated 3 years ago
KuShuSec / KuShu-Atama
View on GitHub
☆55Jan 19, 2026Updated 2 months ago
jbudacki / TTX-Template
View on GitHub
Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…
☆44Sep 8, 2020Updated 5 years ago
wdahlenburg / canary
View on GitHub
CLI tool written in Go to generate Canary Tokens from https://canarytokens.org
☆13Aug 22, 2025Updated 7 months ago
neumanndaniel / scripts
View on GitHub
Script examples - Bash, PowerShell, etc.
☆16Jan 1, 2025Updated last year
dfir-scripts / EverReady-Disk-Mount
View on GitHub
Disk Image Mounting Script
☆11Jan 22, 2026Updated 2 months ago
TheRavenFile / Daily-Hunt
View on GitHub
IOCs collected during day-to-day activities
☆114Mar 16, 2026Updated last week
6mile / DEFCON33-Workshop
View on GitHub
DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)
☆15Aug 8, 2025Updated 7 months ago
jtpereyda / regpol
View on GitHub
Read Registry.pol files on Linux, or anywhere Python runs!
☆17Jun 12, 2023Updated 2 years ago
paulpc / quickIR
View on GitHub
Auxiliary scripts for Incident Response with ELK
☆11Oct 7, 2015Updated 10 years ago
mattnotmax / hash_hunter
View on GitHub
Command-line tool to search for malware samples in various repositories
☆13Mar 3, 2022Updated 4 years ago