Memory Forensic System on Cloud
☆92Dec 21, 2023Updated 2 years ago
Alternatives and similar repositories for MemoryForensic-on-Cloud
Users that are interested in MemoryForensic-on-Cloud are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Surface Analysis System on Cloud☆19Dec 21, 2023Updated 2 years ago
- Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in…☆952Feb 11, 2026Updated last month
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,208Feb 20, 2026Updated last month
- Automatically update IoC for lucky visitor scam☆26Apr 9, 2025Updated 11 months ago
- bitCollector - DFIR (Digital Forensics and Incident Response) Triage Collector☆13Aug 18, 2025Updated 7 months ago
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …☆198Jan 6, 2026Updated 2 months ago
- ☆11Jul 9, 2023Updated 2 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 3 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆279Feb 2, 2021Updated 5 years ago
- ☆11Dec 9, 2025Updated 3 months ago
- Python CLI covering the FileScan.IO API - enabling automatic interaction with www.filescan.io or private instances☆18Jul 15, 2025Updated 8 months ago
- my MSTICpy practice and custom tools repository☆11Apr 23, 2025Updated 11 months ago
- Cybersecurity Evaluation Tool☆1,787Updated this week
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆701Oct 22, 2025Updated 5 months ago
- Signatures and IoCs from public Volexity blog posts.☆366Dec 4, 2025Updated 3 months ago
- ☆14Dec 6, 2023Updated 2 years ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- Tool to perform differential fault analysis attack (DFA) on whiteboxes with external encodings.☆16Feb 10, 2023Updated 3 years ago
- Anteater is Reconnaissance tool for discovering interesting files and folders in a web application that most likely has been misconfigure…☆13Jun 12, 2024Updated last year
- ☆12Feb 24, 2023Updated 3 years ago
- Website crawler with YARA detection☆89Aug 20, 2023Updated 2 years ago
- ☆11Jun 12, 2023Updated 2 years ago
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆339Mar 17, 2026Updated last week
- Automation to assess the state of your M365 tenant against CISA's baselines☆2,509Updated this week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆171Dec 7, 2025Updated 3 months ago
- CSIRT Jump Bag☆27Apr 25, 2024Updated last year
- Harness the power of Splunk for your investigations☆158Oct 11, 2025Updated 5 months ago
- Online resources and study guide that will help preparing for Certified Kubernetes Security Specialist (CKS) exam. Please make pull reque…☆21Sep 25, 2020Updated 5 years ago
- Powershell module for VMWare vSphere forensics☆170Nov 8, 2024Updated last year
- ☆103Nov 21, 2025Updated 4 months ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆254Nov 18, 2024Updated last year
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆226Oct 26, 2025Updated 4 months ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Feb 3, 2022Updated 4 years ago
- Containers Wrapper is a Go library that provides a convenient and unified interface for interacting with container engines such as Docker…☆13Sep 10, 2023Updated 2 years ago
- Python library to carry out DFIR analysis on the Cloud☆502Updated this week