Alternatives and similar repositories for thor-lite

Users that are interested in thor-lite are comparing it to the libraries listed below

• The-DFIR-Report / Yara-Rules
  ☆69Updated 3 months ago
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆114Updated last year
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆85Updated 6 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated 6 months ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆87Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 2 years ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆116Updated last year
• CrowdStrike / xwf-yara-scanner
  ☆87Updated last year
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆122Updated 4 months ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆153Updated 3 years ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆113Updated 3 months ago
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆168Updated last month
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆195Updated this week
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆145Updated 2 years ago
• NextronSystems / nextron-helper-scripts
  Public tools, scripts or code snippets that can help when working with our products
  ☆46Updated last month
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆109Updated last year
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated last year
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆130Updated last year
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆160Updated 8 months ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆78Updated this week
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated 2 years ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆74Updated last year
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated 2 years ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆201Updated 3 months ago
• nov3mb3r / trident
  A PowerShell incident response script for quick triage
  ☆80Updated 2 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆54Updated 5 years ago
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆312Updated 3 weeks ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆99Updated 11 months ago