JamesHabben / EnCaseNetworkFramework
This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a quick network enabled EnScript to respond quickly to threats with minimal code being written.
☆13Updated 9 years ago
Alternatives and similar repositories for EnCaseNetworkFramework:
Users that are interested in EnCaseNetworkFramework are comparing it to the libraries listed below
- ☆16Updated 10 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Why hunt when you can seine?☆21Updated 9 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- Shared yara rules☆30Updated 10 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 8 years ago
- RegRipper wrapper for simplified bulk parsing or registry hives☆9Updated 6 years ago
- Carve Windows Prefetch files from arbitrary binary data☆14Updated 7 years ago
- Automation for VirusTotal☆31Updated 8 years ago
- Python interface to the CRITs API☆22Updated 7 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 4 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- Frontend for Codex Gigas☆21Updated 7 years ago
- cuckoo sandbox patches and scripts☆15Updated 11 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- Cuckoo Sandbox Local Maltego Transforms Project☆49Updated 10 years ago
- API Tools☆27Updated 8 years ago
- Volatility Plugin to scan for shimmed processes in Windows☆10Updated 9 years ago
- See here:☆42Updated 12 years ago
- A GC link parser for both linkfiles and jumplists.☆18Updated 8 years ago
- Various scrips☆12Updated 2 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago