SekoiaLab / Fastir_Collector

Related projects ⓘ

Alternatives and complementary repositories for Fastir_Collector

• mandiant / flare-wmi
  ☆417Updated last year
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 2 months ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 5 years ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆463Updated 5 years ago
• mandiant / ShimCacheParser
  ☆273Updated last year
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆263Updated 3 years ago
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 7 years ago
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆380Updated 5 years ago
• Xen0ph0n / YaraGenerator
  Automatic Yara Rule Generation
  ☆332Updated 8 years ago
• 504ensicsLabs / DAMM
  Differential Analysis of Malware in Memory
  ☆209Updated 7 years ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆616Updated 5 years ago
• THIBER-ORG / userline
  Query and report user logons relations from MS Windows Security Events
  ☆240Updated 6 years ago
• SekoiaLab / Fastir_Collector_Linux
  ☆173Updated 3 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆271Updated 6 months ago
• diogo-fernan / ir-rescue
  A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
  ☆465Updated 3 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆423Updated 10 months ago
• travisfoley / dfirtriage
  Digital forensic acquisition tool for Windows based incident response.
  ☆334Updated 6 months ago
• mandiant / ioc_writer
  ☆200Updated last year
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆598Updated 5 years ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆474Updated 2 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆285Updated 7 years ago
• godaddy / procfilter
  A YARA-integrated process denial framework for Windows
  ☆397Updated 4 years ago
• Ptr32Void / OSTrICa
  ☆309Updated 7 years ago
• JPCERTCC / aa-tools
  Artifact analysis tools by JPCERT/CC Analysis Center
  ☆455Updated 4 months ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆862Updated this week
• gfoss / PSRecon
  PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted da…
  ☆479Updated 7 years ago
• vitaly-kamluk / bitscout
  Remote forensics meta tool
  ☆462Updated 5 months ago
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆183Updated 2 years ago