Alternatives and similar repositories for calamity

Users that are interested in calamity are comparing it to the libraries listed below

• MatthewClarkMay / fTriage

  View on GitHub
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Mar 12, 2019Updated 6 years ago
• randomaccess3 / regripper_gui

  View on GitHub
  GUI for regripper
  ☆11Mar 19, 2019Updated 6 years ago
• mr-r3b00t / CVE-2021-44228

  View on GitHub
  Backdoor detection for VMware view
  ☆13Jan 5, 2022Updated 4 years ago
• jasonsford / intel_collector

  View on GitHub
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆31Nov 6, 2023Updated 2 years ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 6 years ago
• dwmetz / PSHero

  View on GitHub
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆36Jul 11, 2023Updated 2 years ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• net-protect / google-fs-recover

  View on GitHub
  Google Filestream Forensic Tool
  ☆22Mar 10, 2022Updated 3 years ago
• chaoticmachinery / mass_triage_tools

  View on GitHub
  Mass Triage Tools
  ☆20Dec 16, 2025Updated last month
• daguy666 / Transit

  View on GitHub
  MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.
  ☆20Feb 20, 2020Updated 5 years ago
• cocaman / analysis_scripts

  View on GitHub
  Collection of scripts used to analyse malware or emails
  ☆20Oct 6, 2020Updated 5 years ago
• p4gs / Okta-Incident-Response-Playbook

  View on GitHub
  A generic security incident response playbook investigating and responding to potential compromises of Okta's internal systems, in the co…
  ☆20Mar 24, 2022Updated 3 years ago
• AndrewRathbun / KAPE-EZToolsAncillaryUpdater

  View on GitHub
  A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…
  ☆59Jun 24, 2025Updated 7 months ago
• EricZimmerman / iisGeolocate

  View on GitHub
  geolocate ip addresses in IIS logs
  ☆20Jan 8, 2025Updated last year
• 00010111 / gMetaDataParse

  View on GitHub
  ☆24Mar 12, 2025Updated 11 months ago
• AndrewRathbun / EventTranscript.db-Research

  View on GitHub
  A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
  ☆43Jul 18, 2022Updated 3 years ago
• AbdulRhmanAlfaifi / lnk_parser

  View on GitHub
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆22Jul 12, 2025Updated 7 months ago
• nrvana / macOS-triage

  View on GitHub
  macOS triage is a python script to collect various macOS logs, artifacts, and other data.
  ☆25Mar 25, 2021Updated 4 years ago
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• JCyberSec / CTIURLScan

  View on GitHub
  CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, auto…
  ☆10Mar 2, 2021Updated 4 years ago
• rcobb76101 / bulk_volatility_scanner

  View on GitHub
  Python script to run battery of Volatility plugins against a forensic memory image
  ☆10Jun 22, 2019Updated 6 years ago
• ydkhatri / spotlight_queries

  View on GitHub
  Queries for parsed spotlight database in sqlite
  ☆13Dec 29, 2020Updated 5 years ago
• lprat / smuggling_detect

  View on GitHub
  Try to detect HTTP desync attack (https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn)
  ☆11Sep 20, 2019Updated 6 years ago
• active-threat-hunting / active-threat-hunting

  View on GitHub
  Tools for hunting security threats
  ☆12Feb 4, 2020Updated 6 years ago
• stuxnet999 / EventTranscriptParser

  View on GitHub
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Sep 13, 2023Updated 2 years ago
• Hestat / soc-threat-hunting

  View on GitHub
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Jul 27, 2020Updated 5 years ago
• lasq88 / MalwareAnalysis

  View on GitHub
  Malware Analysis tools
  ☆26Sep 14, 2024Updated last year
• andreafortuna / malhunt

  View on GitHub
  Hunt malware with Volatility
  ☆47Jul 9, 2025Updated 7 months ago
• digitalsleuth / WIN-FOR

  View on GitHub
  Windows Forensics Environment Builder
  ☆179Dec 5, 2025Updated 2 months ago
• truekonrads / kpulp

  View on GitHub
  Konrads' Pen-Ultimate (Windows) Log File Parser
  ☆14Dec 27, 2025Updated last month
• The-DFIR-Report / Suricata-Rules

  View on GitHub
  ☆11Jun 12, 2023Updated 2 years ago
• AbdulRhmanAlfaifi / SDSParser-rs

  View on GitHub
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Jan 9, 2023Updated 3 years ago
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• rembish / cfb

  View on GitHub
  Microsoft Compound File Binary (CFB) file format Python IO
  ☆15Aug 27, 2014Updated 11 years ago
• IntelCorgi / OSINT_CyberChef_Recipes

  View on GitHub
  A collection of cyberchef recipes for use in osint investigations
  ☆14Jul 2, 2022Updated 3 years ago
• cybercdh / vpaths

  View on GitHub
  Take a list of URIs and print all the of the paths
  ☆10Aug 16, 2020Updated 5 years ago
• SneakyNachos / MalwareAnalysisTraining

  View on GitHub
  Work in Progress repo
  ☆15Apr 18, 2019Updated 6 years ago
• sumeshi / mft2es

  View on GitHub
  A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.
  ☆12Jun 23, 2025Updated 7 months ago
• idiom / IRScripts

  View on GitHub
  Incident Response Scripts
  ☆30Mar 1, 2020Updated 5 years ago