Alternatives and similar repositories for artifacts

Users that are interested in artifacts are comparing it to the libraries listed below

• log2timeline / plaso
  Super timeline all the things
  ☆1,866Updated 3 weeks ago
• orlikoski / CyLR
  CyLR - Live Response Collection Tool
  ☆682Updated 3 years ago
• davehull / Kansa
  A Powershell incident response framework
  ☆1,606Updated 2 years ago
• philhagen / sof-elk
  Configuration files for the SOF-ELK VM
  ☆1,596Updated last week
• DFIRKuiper / Kuiper
  Digital Forensics Investigation Platform
  ☆829Updated 8 months ago
• cyb3rfox / Aurora-Incident-Response
  Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
  ☆913Updated last year
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,654Updated 2 months ago
• EricZimmerman / KapeFiles
  This repository serves as a place for community created Targets and Modules for use with KAPE.
  ☆742Updated this week
• Neo23x0 / munin
  Online hash checker for Virustotal and other services
  ☆829Updated 3 months ago
• ThreatHuntingProject / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆1,789Updated 3 years ago
• tclahr / uac
  UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …
  ☆994Updated 2 weeks ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆823Updated last week
• Neo23x0 / Fenrir
  Simple Bash IOC Scanner
  ☆740Updated 3 years ago
• google / turbinia
  Automation and Scaling of Digital Forensics Tools
  ☆768Updated last week
• MarkBaggett / srum-dump
  A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.
  ☆687Updated 2 weeks ago
• AndrewRathbun / DFIRArtifactMuseum
  The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…
  ☆597Updated 3 months ago
• sbousseaden / EVTX-ATTACK-SAMPLES
  Windows Events Attack Samples
  ☆2,375Updated 2 years ago
• OTRF / OSSEM
  Open Source Security Events Metadata (OSSEM)
  ☆1,272Updated 2 years ago
• OTRF / Security-Datasets
  Re-play Security Events
  ☆1,652Updated last year
• MISP / misp-training
  MISP trainings, threat intel and information sharing training materials with source code
  ☆411Updated 3 weeks ago
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆594Updated 11 months ago
• A3sal0n / CyberThreatHunting
  A collection of resources for Threat Hunters
  ☆890Updated 8 months ago
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆323Updated this week
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆872Updated last month
• palantir / alerting-detection-strategy-framework
  A framework for developing alerting and detection strategies for incident response.
  ☆754Updated 3 years ago
• olafhartong / ThreatHunting
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,158Updated last year
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆868Updated last year
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆519Updated 9 months ago
• sans-blue-team / blue-team-wiki
  Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
  ☆453Updated 3 years ago
• atc-project / atomic-threat-coverage
  Actionable analytics designed to combat threats
  ☆989Updated 3 years ago