Alternatives and similar repositories for EDI

Users that are interested in EDI are comparing it to the libraries listed below

• 0Xdarkday / Investigator-Hand
  ☆15Updated 6 months ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆66Updated 2 years ago
• 0xHasanM / MISC
  ☆16Updated 2 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆105Updated this week
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆99Updated 3 weeks ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated 2 months ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated 3 months ago
• 0xph03n1x / eCTHPv2
  Collection of scripts and tools related to the eCTHPv2 exam by INE.
  ☆14Updated 2 years ago
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆72Updated last year
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆126Updated 3 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 8 months ago
• CyberCastle-Blueteam / OpenThreatDetectionRules
  A collection of open source threat detection rules created by Cyber Castle's team.
  ☆14Updated 2 years ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆175Updated 2 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆156Updated last month
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆116Updated last year
• christian-taillon / splunk-spl
  SPL cheatsheet for Splunk.
  ☆22Updated 2 years ago
• Xboarder56 / QRCE-Rules
  These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.
  ☆55Updated 5 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆144Updated last month
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆78Updated 3 years ago
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆48Updated last year
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆87Updated last year
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• The-DFIR-Report / Yara-Rules
  ☆69Updated 2 months ago
• isherwood-sec / detection-engineering
  ☆48Updated last week
• ReconInfoSec / velociraptor-to-timesketch
  ☆7Updated 6 months ago
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆98Updated 3 months ago
• lasersharkkiller / Threat-Hunter
  Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…
  ☆17Updated last year