NextronSystems / velociraptor-artifacts-thorView external linksLinks
Thor Artifacts for Velociraptor
☆19Dec 2, 2025Updated 2 months ago
Alternatives and similar repositories for velociraptor-artifacts-thor
Users that are interested in velociraptor-artifacts-thor are comparing it to the libraries listed below
Sorting:
- Hunt the windows Registry automatically using VQL☆13Jan 6, 2026Updated last month
- An experimental Velociraptor implementation using cloud infrastructure☆26Dec 2, 2025Updated 2 months ago
- CLI generator for Velociraptor offline collector☆15Oct 10, 2025Updated 4 months ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 3 weeks ago
- ☆14Oct 24, 2024Updated last year
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆15Feb 4, 2026Updated last week
- Indicators of compromise☆17Jan 29, 2026Updated 2 weeks ago
- This repo is all about Blue teamming and CyberDefenders Write-up for their DFIR challenges☆18Nov 5, 2023Updated 2 years ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Jul 13, 2021Updated 4 years ago
- A repository to share publicly available Velociraptor detection content☆196Updated this week
- Scripts and lists to help generate YARA friendly string mutations☆22Apr 9, 2023Updated 2 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆25May 29, 2023Updated 2 years ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆68Aug 20, 2025Updated 5 months ago
- ☆54May 14, 2024Updated last year
- Initial triage of Windows Event logs☆106Jun 16, 2024Updated last year
- THOR Thunderstorm Collectors☆25Updated this week
- Tools for inspecting YARA bytecode☆21Jul 1, 2020Updated 5 years ago
- A Python script for extracting IP addresses, URLs, headers, and attachments from .eml files. Additional functionalities include defanging…☆42Oct 10, 2024Updated last year
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- E-Commerce Clothing Shop Website! This project is a dynamic and user-friendly online store created using WordPress, designed to offer a s…☆10Aug 10, 2024Updated last year
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆64Dec 18, 2024Updated last year
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆26Oct 3, 2023Updated 2 years ago
- Network security visualization tool, showcasing live traffic between internal and external hosts in a real-time visualization.☆27Apr 11, 2023Updated 2 years ago
- Dump quarantined files from Windows Defender☆74Apr 6, 2022Updated 3 years ago
- ☆65Sep 18, 2025Updated 4 months ago
- ☆68Nov 25, 2025Updated 2 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Jul 11, 2023Updated 2 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆32May 25, 2024Updated last year
- Contains compiled binaries of Volatility☆37May 18, 2025Updated 8 months ago
- Tool used to perform threat intelligence against packet data☆36Jan 26, 2025Updated last year
- Notes for the PJPT exam!☆14Aug 8, 2024Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆78Apr 12, 2023Updated 2 years ago
- Repository with selected IOCs and YARA rules for threat hunting.☆35May 21, 2025Updated 8 months ago
- Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)☆41Nov 7, 2023Updated 2 years ago
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆68Jan 29, 2026Updated 2 weeks ago
- Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs☆91Jan 23, 2025Updated last year
- Python based CLI for MalwareBazaar☆39Jul 22, 2025Updated 6 months ago
- Detection rule validation☆40Oct 25, 2023Updated 2 years ago