Lifars/gargamel

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Lifars/gargamel)

Lifars / gargamel

A forensic evidence acquirer

☆86

Alternatives and similar repositories for gargamel

Users that are interested in gargamel are comparing it to the libraries listed below

Sorting:

A3h1nt / Dnsrr
View on GitHub
DNSrr is a tool written in bash, used to enumerate all the juicy stuff from DNS.
☆122Aug 1, 2022Updated 3 years ago
blackhatethicalhacking / cryptosteganography
View on GitHub
A python steganography module to store messages or files protected with AES-256 encryption inside an image.
☆10Jan 18, 2022Updated 4 years ago
NoelV11 / DFIR-Training
View on GitHub
Digital Forensics and Incident Response notes and Autopsy tool walkthrough
☆11Feb 3, 2022Updated 4 years ago
eurecom-s3 / tangled_iot
View on GitHub
The Tangled Genealogy of IoT Malware
☆12Jan 5, 2021Updated 5 years ago
tvfischer / ps-srum-hunting
View on GitHub
PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting
☆23Oct 26, 2019Updated 6 years ago
h0rv4th / c2matrix-analyzer
View on GitHub
Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
☆12Apr 18, 2020Updated 5 years ago
adityaks / strafer
View on GitHub
Strafer: A tool to detect potential infections in Elasticsearch instances
☆27Mar 14, 2021Updated 4 years ago
malienist / lupo
View on GitHub
Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
☆103May 11, 2022Updated 3 years ago
mhaskar / Bughound
View on GitHub
Static code analysis tool based on Elasticsearch
☆129Jan 23, 2021Updated 5 years ago
josh0xA / K55
View on GitHub
Linux x86_64 Process Injection Utility
☆58Mar 9, 2021Updated 4 years ago
robomotic / invoke-antivm
View on GitHub
powershell tool for VM evasion
☆41Oct 2, 2020Updated 5 years ago
varchashva / vPrioritizer
View on GitHub
vPrioritizer enables us to understand the contextualized risk (vPRisk) on asset-vulnerability relationship level across the organization,…
☆69Jul 9, 2025Updated 7 months ago
csirt-tooling-org / tooling-directory
View on GitHub
Tools used by CSIRT and especially in the scope of CNW
☆18Feb 26, 2026Updated last week
deadjakk / patch-checker
View on GitHub
Web-based check for Windows privesc vulnerabilities
☆140May 14, 2023Updated 2 years ago
nodauf / Go-RouterSocks
View on GitHub
Router socks. One port socks for all the others.
☆69May 22, 2024Updated last year
dwmetz / PSHero
View on GitHub
PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
☆37Jul 11, 2023Updated 2 years ago
theflakes / Linux_Forensic_Harvester
View on GitHub
Harvest Linux forensic data for operational triage of an event.
☆51Nov 30, 2025Updated 3 months ago
PaperMtn / lil-pwny
View on GitHub
Fast offline auditing of Active Directory passwords using Python.
☆166Aug 14, 2024Updated last year
litneet64 / etherblob-explorer
View on GitHub
Search and extract blob files on the Ethereum Blockchain network
☆44Apr 3, 2021Updated 4 years ago
yehgdotnet / S3Scanner
View on GitHub
Scan for open S3 buckets and dump
☆38Feb 23, 2018Updated 8 years ago
RedSiege / CIMplant
View on GitHub
C# port of WMImplant which uses either CIM or WMI to query remote systems
☆203Jul 14, 2021Updated 4 years ago
pentest-a2p2v / pentest-a2p2v-core
View on GitHub
Core A2P2V functionality (command line based)
☆68May 14, 2024Updated last year
spyre-project / spyre
View on GitHub
simple YARA-based IOC scanner
☆176Jan 9, 2026Updated last month
e3prom / bst
View on GitHub
Binary String Toolkit (BST). Quickly and easily convert binary strings for all your exploit development needs.
☆23Jul 27, 2018Updated 7 years ago
repnz / rpcmon
View on GitHub
RPC Monitor based on The ETW Microsoft-Windows-Rpc provider
☆24Mar 22, 2020Updated 5 years ago
cosmic-zip / witchcraft
View on GitHub
WITCHCRAFT is a cyberdeck toolkit built for runners who dive deep into the mesh. It’s your all-in-one rig for data-ghosting, ICE-breaking…
☆46Aug 15, 2025Updated 6 months ago
dwmetz / CyberPipe
View on GitHub
An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
☆341Dec 3, 2025Updated 3 months ago
aahmad097 / BadOutlook
View on GitHub
(kinda) Malicious Outlook Reader
☆138Mar 3, 2021Updated 5 years ago
Securityinbits / cheatsheet
View on GitHub
These are some of the commands which I use frequently during Malware Analysis and DFIR.
☆24Jan 8, 2024Updated 2 years ago
carter-yagemann / barnum-tracer
View on GitHub
The PT tracing portion of Barnum.
☆11Feb 8, 2019Updated 7 years ago
randomaccess3 / regripper_gui
View on GitHub
GUI for regripper
☆11Mar 19, 2019Updated 6 years ago
mitre / gocat
View on GitHub
Simplified go-cat agent for caldera
☆11Dec 18, 2023Updated 2 years ago
rkovar / sunburstlookups
View on GitHub
Quick lookup files for SUNBURST Backdoor
☆12Dec 15, 2020Updated 5 years ago
miguelpduarte / SINFCTF2020-public
View on GitHub
Challenges and official solutions for SINF CTF 2020 (companion CTF of SINF, for students, which I organized by myself)
☆13Nov 11, 2020Updated 5 years ago
Invoke-IR / POSHNBD
View on GitHub
PowerShell Module to provide Network Block Device like functionality on Windows Hosts
☆13Sep 27, 2015Updated 10 years ago
gabrielcurrie / nist-cybersecurity-library
View on GitHub
Technical cyber security resources across the NIST cyber security framework lifecycle
☆11Apr 28, 2021Updated 4 years ago
mrdraper / pythonforblueteam
View on GitHub
A collection of Python resources for Blue Team security work
☆16Sep 23, 2018Updated 7 years ago
fmartingr / iosfu
View on GitHub
iOS forensics utility
☆12May 8, 2018Updated 7 years ago
balaganeshcyber / Emailspoofing
View on GitHub
☆12Dec 26, 2022Updated 3 years ago