LDO-CERT / orochiLinks
The Volatility Collaborative GUI
☆254Updated this week
Alternatives and similar repositories for orochi
Users that are interested in orochi are comparing it to the libraries listed below
Sorting:
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆181Updated 2 weeks ago
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- Harness the power of Splunk for your investigations☆135Updated last week
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆296Updated 5 months ago
- ☆144Updated last week
- ☆211Updated 4 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆619Updated this week
- Automated YARA Rule Standardization and Quality Assurance Tool☆247Updated this week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆335Updated last week
- Rules generated from our investigations.☆202Updated 4 months ago
- Memory acquisition for Linux that makes sense.☆209Updated last year
- Signatures and IoCs from public Volexity blog posts.☆359Updated 2 weeks ago
- Malware repository component for samples & static configuration with REST API interface.☆367Updated last week
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆217Updated 8 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆167Updated last year
- ☆75Updated 3 weeks ago
- Jupyter Notebooks for the Blue Team☆146Updated 7 months ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆115Updated 2 years ago
- ☆513Updated last year
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆207Updated this week
- Artifact collection tool for *nix systems☆213Updated last year
- A curated list of KAPE-related resources☆174Updated 5 months ago
- Forensics Wiki, a wiki devoted to information about digital forensics (also known as computer forensics)☆293Updated 2 weeks ago
- ☆13Updated last year
- Threat Hunting tool about Sysmon and graphs☆334Updated 2 years ago
- An opensource sigma conversion tool built using pysigma☆141Updated last week
- Live forensic artifacts collector☆171Updated last year
- Incident Response collection and processing scripts with automated reporting scripts☆312Updated last year
- Repository of public reference frameworks for the DFIR community.☆120Updated 2 years ago
- Windows Forensics Environment Builder☆159Updated last month