Alternatives and similar repositories for EDI:

Users that are interested in EDI are comparing it to the libraries listed below

• 0Xdarkday / Investigator-Hand
  ☆15Updated 5 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 2 years ago
• 0xHasanM / MISC
  ☆16Updated 2 months ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated 2 months ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated last month
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆93Updated this week
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆99Updated 3 weeks ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated 2 months ago
• CyDefOps / project-killchain
  Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…
  ☆101Updated 8 months ago
• isherwood-sec / detection-engineering
  ☆47Updated last month
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆48Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆154Updated 2 weeks ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆81Updated 5 months ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆174Updated 2 years ago
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆70Updated last year
• CyberCastle-Blueteam / OpenThreatDetectionRules
  A collection of open source threat detection rules created by Cyber Castle's team.
  ☆14Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 7 months ago
• st0pp3r / awesome-soc-analyst
  Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, po…
  ☆10Updated last month
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆158Updated 7 months ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆112Updated this week
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆125Updated 2 years ago
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆184Updated 4 months ago
• signorrayan / SplunkThreatHunting
  This repository contains Splunk queries to hunt some anomalies
  ☆41Updated 2 years ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆77Updated 3 years ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• 0xph03n1x / eCTHPv2
  Collection of scripts and tools related to the eCTHPv2 exam by INE.
  ☆13Updated 2 years ago
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• lasersharkkiller / Threat-Hunter
  Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…
  ☆17Updated last year