Ghassan-elsman / Crow-EyeLinks
Windows forensics Engine
☆50Updated this week
Alternatives and similar repositories for Crow-Eye
Users that are interested in Crow-Eye are comparing it to the libraries listed below
Sorting:
- ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy.☆154Updated this week
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- Cyber threat intelligence tool suite.☆42Updated 9 months ago
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆200Updated last week
- Inboxfuscation is an advanced offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.☆79Updated 4 months ago
- An index of publicly available and open-source threat detection rulesets.☆130Updated 9 months ago
- Parse and analyze a Windows Amcache.hve registry hive, VirusTotal integration.☆109Updated 5 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆58Updated 7 months ago
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆169Updated last month
- MCP to help Defenders Detection Engineer Harder and Smarter☆63Updated this week
- Finding ClickFix and FakeCAPTCHA like it's 1999☆120Updated this week
- A tool for mapping cyber crime☆235Updated last week
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Updated 6 months ago
- Super light, super fast, unlimited search idea☆25Updated 5 months ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆50Updated 8 months ago
- Python scripts to convert PfSense and OPNSense firewall rules into a graphical view of the flows.☆357Updated 2 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆185Updated 11 months ago
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Updated 8 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆107Updated last month
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆154Updated last month
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆82Updated 9 months ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Updated 10 months ago
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Updated 7 months ago
- MS Graph Commands and Tools for Blue Teamers☆52Updated 2 years ago
- ☆58Updated last month
- Scripts and a short guide for using them to tier an Active Directory. Made for BSides Copenhagen 2024☆39Updated 3 months ago
- 🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Go…☆81Updated 5 months ago
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated 2 months ago
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆440Updated 3 months ago
- A simple vulnerability scanning application built with FastAPI. vulnerability-scanner open-source-security nmap-cve SIEM☆32Updated 3 weeks ago