Alternatives and similar repositories for aurora-agent-lite:

Users that are interested in aurora-agent-lite are comparing it to the libraries listed below

• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆88Updated 8 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆97Updated 9 months ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆39Updated 11 months ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated 11 months ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆38Updated 2 weeks ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 3 months ago
• NextronSystems / nextron-helper-scripts
  Public tools, scripts or code snippets that can help when working with our products
  ☆46Updated 2 months ago
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆64Updated this week
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆36Updated last month
• NextronSystems / aurora-agent-manual
  Aurora Agent User Manual
  ☆26Updated last month
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆31Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆32Updated 4 months ago
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆65Updated this week
• JMousqueton / ransomware.live
  🏴‍☠️💰 Another Ransomware gang tracker
  ☆186Updated this week
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆44Updated 2 years ago
• youhgo / DOPP
  DFIR ORC PARSER PROJECT
  ☆25Updated last month
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆30Updated 10 months ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆46Updated 2 years ago
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆101Updated 5 months ago
• ANSSI-FR / sftp2misp
  Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
  ☆15Updated last year
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆80Updated 10 months ago
• fr0gger / JupyterUniverse
  Jupyter Univere is a search engine for all infosec jupyter notebooks
  ☆26Updated last week
• Velocidex / go-ese
  Go implementation of an Extensible Storage Engine parser
  ☆29Updated last month
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆77Updated 5 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆76Updated 4 months ago