This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a quick network enabled EnScript to respond quickly to threats with minimal code being written.
☆13Apr 22, 2015Updated 10 years ago
Alternatives and similar repositories for EnCaseNetworkFramework
Users that are interested in EnCaseNetworkFramework are comparing it to the libraries listed below
Sorting:
- Random scripts for log mining, intel gathering, network querying, and other incident response-ish activities☆16Sep 13, 2022Updated 3 years ago
- a GUI Interface for DFIR Open Source Tools☆10Jun 16, 2015Updated 10 years ago
- Queries to parse sysmon event log file with microsoft logparser☆58Mar 31, 2015Updated 10 years ago
- onigiri - remote malware triage script☆24Nov 5, 2015Updated 10 years ago
- ☆12Sep 28, 2016Updated 9 years ago
- ☆16Jan 31, 2015Updated 11 years ago
- Maps process creation logged by Sysmon uses Google Org Chart API☆23Mar 5, 2016Updated 10 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Dec 27, 2017Updated 8 years ago
- Honeypot log processor to create OTX Pulse entries☆28Jan 1, 2024Updated 2 years ago
- A tool to visually snapshot a website by supplying multiple user-agent. Designed to aid in discovery of different entry points into an ap…☆30May 6, 2016Updated 9 years ago
- Maltego Transform to put entities into MISP events☆28Jul 24, 2021Updated 4 years ago
- Python OpenIOC Editor☆18Dec 28, 2015Updated 10 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆17Feb 5, 2016Updated 10 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Fetch all Honeypot☆12Oct 3, 2018Updated 7 years ago
- ☆11Aug 3, 2018Updated 7 years ago
- 🎯 Vulnerability Pryer - Prying context into your vulnerability data☆21Feb 24, 2026Updated 3 weeks ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Sep 13, 2016Updated 9 years ago
- This repository is a curated list of pro bono incident response entities.☆21Jun 21, 2023Updated 2 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network☆15Mar 17, 2018Updated 8 years ago
- Discover potential timestamps within the Windows Registry☆19Apr 22, 2014Updated 11 years ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago
- A Python module for Palo Alto Networks' WildFire API☆11Feb 18, 2020Updated 6 years ago
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- This repository demonstrates a security vulnerability in MCP (Model Context Protocol ) servers that allows for remote code execution and …☆21Apr 21, 2025Updated 11 months ago
- Volatility plugins☆12Feb 19, 2015Updated 11 years ago
- The LogParserPlus application, which uses Microsoft's Log Parser.☆12Jul 30, 2017Updated 8 years ago
- Frontend for Codex Gigas☆21Mar 6, 2017Updated 9 years ago
- cuckoo sandbox patches and scripts☆15Jan 30, 2014Updated 12 years ago
- Bringing DevOps to Forensics☆34Feb 4, 2015Updated 11 years ago
- IP over DNS tunnel☆23May 23, 2017Updated 8 years ago
- shell script to create an image and perform initial examination on a drive☆15Feb 28, 2020Updated 6 years ago
- Modified edition of cuckoo☆11Jan 12, 2016Updated 10 years ago
- Dockerized eMobility for use in T-Pot☆18Oct 23, 2017Updated 8 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆32Aug 29, 2016Updated 9 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆20Oct 24, 2018Updated 7 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Apr 4, 2017Updated 8 years ago
- REST/JSON interface to Burp Suite☆33Oct 12, 2020Updated 5 years ago