Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment
☆14Jan 7, 2026Updated 2 months ago
Alternatives and similar repositories for __DFIR-scripts
Users that are interested in __DFIR-scripts are comparing it to the libraries listed below
Sorting:
- This repository maintains some of the scripts made by Ebryx DevSecOps team.☆12Dec 21, 2022Updated 3 years ago
- Creating CS:GO server with skins, ws, gloves, knife, rank, rs, etc. both with a bash file and using a docker file.☆16Sep 11, 2022Updated 3 years ago
- ☆12Mar 24, 2018Updated 7 years ago
- Projects for AWS ThreatHunting☆21Aug 20, 2021Updated 4 years ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆40Jun 3, 2021Updated 4 years ago
- An experimental shell that handles file exfiltration, exploit injection and various other obnoxious tasks.☆14Aug 9, 2020Updated 5 years ago
- Python and PowerShell utilities for finding installed browser extensions, plug-ins and add-ons☆25Jun 14, 2016Updated 9 years ago
- Everything you see on my tutorials is here in this repo☆10Jun 19, 2017Updated 8 years ago
- A list of cyber security companies or companies that have their own Cyber Security Department.☆21Jun 10, 2024Updated last year
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 6 months ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23May 4, 2016Updated 9 years ago
- Python addon for dirsearch☆15Nov 6, 2018Updated 7 years ago
- Graphical map of known Advanced Persistent Threats☆63Jan 31, 2026Updated last month
- Use DNS to hunt for threats including DGAs☆15Jan 4, 2016Updated 10 years ago
- All the useful tools interesting to be used☆24Sep 20, 2022Updated 3 years ago
- CTF writeups for the CTFs and Vulnerable Boxes I play with sometimes☆11Apr 20, 2017Updated 8 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆23Oct 31, 2018Updated 7 years ago
- A collection of Bro scripts I've written☆41Jun 5, 2015Updated 10 years ago
- Initial triage of Windows Event logs☆106Jun 16, 2024Updated last year
- Detailed writeups of how I solved infosec Capture The Flag (CTF) challenges☆48Dec 12, 2025Updated 3 months ago
- Tools for DFIR☆121Jan 25, 2018Updated 8 years ago
- Veil 3.1.X (Check version info in Veil at runtime)☆16Aug 14, 2019Updated 6 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆20Dec 9, 2021Updated 4 years ago
- My own diary notes. Adding the commands, tools, techniques, and resources that I will not memorize.☆15Jul 5, 2023Updated 2 years ago
- ☆12Dec 10, 2020Updated 5 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- Kali Linux Cheat Sheet for Penetration Testers☆14Jun 19, 2017Updated 8 years ago
- repo for sharing stuff☆17Jul 1, 2025Updated 8 months ago
- Comfy & powerful Red Team Infrastructure deployement using Docker☆13Oct 29, 2019Updated 6 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Feb 1, 2021Updated 5 years ago
- Meeting notes☆14Apr 5, 2016Updated 9 years ago
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010 AKA EternalBlue☆12Dec 31, 2018Updated 7 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Jan 22, 2018Updated 8 years ago
- Hardening audit scripts validating Workstations and Servers based on CIS benchmarks☆16Aug 19, 2025Updated 7 months ago
- Mindmaps for threat hunting - work in progress.☆152Mar 15, 2022Updated 4 years ago
- PowerShell Pass The Hash Utils☆16Dec 9, 2018Updated 7 years ago
- Incident Response Playbooks☆15Jun 10, 2019Updated 6 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Feb 19, 2023Updated 3 years ago