NetsecExplained / Advanced-Wireshark-Network-ForensicsLinks
If you've ever picked up a book on Wireshark or network monitoring, they almost all cover about the same information. They'll show you, "Here's an ARP frame, here's an IP packet, here's a web request..." But what they don't go into is: when you open a Pcap file for the first time, where do you start? What are the things that you look for? And ho…
☆20Updated 6 years ago
Alternatives and similar repositories for Advanced-Wireshark-Network-Forensics
Users that are interested in Advanced-Wireshark-Network-Forensics are comparing it to the libraries listed below
Sorting:
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆11Updated 2 years ago
- Small enough to carry on your back (Backpack) 🎒💻☆32Updated 2 years ago
- Image Payload Creating/Injecting tools☆13Updated 3 years ago
- Sniffing out well-known threat groups☆28Updated 9 months ago
- Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.☆27Updated 2 years ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆19Updated last year
- Threat Hunt Investigation Methodology and Procedure☆15Updated 2 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Files for my Python3 Create Your Own Tool Series☆25Updated 2 years ago
- Virus Total Free - IOC parser and report generator☆23Updated 2 years ago
- This contains a list of Blue Team Tools that I use daily, and have stored here for reference.☆33Updated 7 years ago
- A collection of Script for Red Team & Incidence Response☆11Updated 2 years ago
- Hunting Newly Registered Domains☆10Updated 6 years ago
- Mango is a user interactive Powershell program to search for possible privilege escalation vectors on windows☆15Updated 3 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- Hashes of infamous malware☆26Updated last year
- All the useful tools interesting to be used☆23Updated 2 years ago
- ☆12Updated 4 years ago
- This PowerShell script will automate the setup of a development environment, consisting of all the necessary software tools required to c…☆16Updated 5 years ago
- scripts to setup environments for red/blue teams.☆16Updated last year
- 💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh☆34Updated 3 years ago
- This Repository gives the best and possible strategies against hunting the ransomware☆26Updated 2 years ago
- SANS Slingshot Linux Distribution☆51Updated 4 years ago
- A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files☆26Updated 2 years ago
- ☆17Updated 3 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆28Updated 4 years ago
- Python for Defenders Course Resources☆18Updated last year
- Digital Forensics and Incident Response notes and Autopsy tool walkthrough☆11Updated 3 years ago
- A curated list of Awesome Threat Intelligence resources☆16Updated 6 years ago