ForensicArtifacts / artifacts
Digital Forensics artifact repository
☆1,063Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for artifacts
- Digital Forensics Investigation Platform☆769Updated last month
- CyLR - Live Response Collection Tool☆647Updated 2 years ago
- Super timeline all the things☆1,734Updated last month
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,138Updated last year
- A set of Zeek scripts to detect ATT&CK techniques.☆565Updated 4 months ago
- ReversingLabs YARA Rules☆769Updated last month
- Repository of YARA rules made by Trellix ATR Team☆570Updated 11 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆704Updated last year
- This repository serves as a place for community created Targets and Modules for use with KAPE.☆657Updated last week
- A collection of resources for Threat Hunters☆855Updated last month
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆767Updated last year
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆531Updated this week
- Re-play Security Events☆1,604Updated 8 months ago
- A Powershell incident response framework☆1,559Updated last year
- Simple Bash IOC Scanner☆697Updated 2 years ago
- Online hash checker for Virustotal and other services☆809Updated 6 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆555Updated last week
- ☆1,051Updated 5 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,722Updated 3 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆491Updated 2 years ago
- Extract and aggregate threat intelligence.☆831Updated 9 months ago
- A framework for orchestrating forensic collection, processing and data export☆296Updated this week
- Sophos-originated indicators-of-compromise from published reports☆545Updated 2 weeks ago
- Configuration files for the SOF-ELK VM☆1,496Updated last week
- yarGen is a generator for YARA rules☆1,557Updated 5 months ago
- Windows Events Attack Samples☆2,248Updated last year
- Open Source Security Events Metadata (OSSEM)☆1,238Updated last year
- Indicators of Compromises (IOC) of our various investigations☆1,648Updated last week
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆899Updated 11 months ago
- Indicators from Unit 42 Public Reports☆702Updated last month