OWNsecurity / GWForensicLinks
DFIR project to collect and analyze events in Google Workspace
☆12Updated last year
Alternatives and similar repositories for GWForensic
Users that are interested in GWForensic are comparing it to the libraries listed below
Sorting:
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆107Updated 5 months ago
- A collection of CVEs weaponized by ransomware operators☆125Updated last month
- ☆240Updated 3 months ago
- Dissecting and Defeating Ransomware's Evasion Tactics Defcon 32☆17Updated last year
- A collection of methods to learn who the owner of an IP address is.☆174Updated 3 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- Retired TrustedSec Capabilities☆248Updated 10 months ago
- A repository of credential stealer formats☆227Updated 3 months ago
- A repository to share publicly available Velociraptor detection content☆186Updated this week
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆87Updated 2 weeks ago
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆145Updated last month
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆177Updated 4 months ago
- ☆161Updated 2 years ago
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 8 months ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated 8 months ago
- LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.☆191Updated 7 months ago
- R3D SSH Hunter: The Ultimate SSH Key and Bad Guy Tracker☆12Updated 10 months ago
- A repository to store community malware research notes and findings.☆14Updated last month
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆194Updated 10 months ago
- LotL RMM☆241Updated 3 weeks ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- Windows Malware Investigation Scripts & Docs☆84Updated 10 months ago
- A collection of tools, scripts and personal research☆146Updated last month
- A collection of content for blue team professionals, designed to support both reactive and proactive cybersecurity measures of every aspe…☆33Updated 3 months ago
- Active C&C Detector☆156Updated last year
- Tuoni☆138Updated 2 weeks ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆136Updated this week
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆157Updated 5 months ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆88Updated 7 months ago
- A specification and style guide for YARA rules☆55Updated last year