Alternatives and similar repositories for thor-manual:

Users that are interested in thor-manual are comparing it to the libraries listed below

• Orange-Cyberdefense / log4shell_iocs
  Log4Shell IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake
  ☆18Updated 2 years ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 2 months ago
• malvuln / viruscreds
  Database of backdoor passwords used by Malware, uncovered by the Malvuln project.
  ☆26Updated 5 months ago
• Velocidex / SQLiteHunter
  Hunt for SQLite files used by various applications
  ☆23Updated this week
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 4 months ago
• SentineLabs / log4j_response
  ☆15Updated 3 years ago
• nullcharb / The-Art-of-Malware-Analysis
  This is the official repository for Basic Malware Analysis Course
  ☆19Updated 3 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 3 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆26Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 3 years ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆24Updated this week
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 3 years ago
• Symantec / threathunters
  ☆28Updated 2 months ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆15Updated 6 years ago
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated last month
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• NVISOsecurity / nviso-cti
  ☆41Updated 11 months ago
• stvemillertime / Cerebro
  Scripts and lists to help generate YARA friendly string mutations
  ☆21Updated last year
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆113Updated 3 years ago
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆51Updated 3 months ago
• QueenSquishy / Zombie
  General Content
  ☆26Updated 8 months ago
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• usualsuspect / yara_vt_mock
  Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
  ☆21Updated last year
• CD-R0M / YARA
  Hundred Days of Yara Challenge
  ☆12Updated 2 years ago
• chapinb / python-forensics-handbook
  A quick reference guide for python script development in DFIR
  ☆16Updated last year
• threatexpress / threatbox
  ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …
  ☆73Updated 4 months ago
• Permiso-io-tools / DetentionDodger
  ☆14Updated last month
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆40Updated 3 months ago