☆176Jan 26, 2021Updated 5 years ago
Alternatives and similar repositories for Fastir_Collector_Linux
Users that are interested in Fastir_Collector_Linux are comparing it to the libraries listed below
Sorting:
- ☆519Jan 26, 2021Updated 5 years ago
- Live forensic artifacts collector☆172Jul 5, 2024Updated last year
- This repository is a curated list of pro bono incident response entities.☆21Jun 21, 2023Updated 2 years ago
- ☆280Apr 6, 2023Updated 2 years ago
- Windows Live Artifacts Acquisition Script☆190Jun 20, 2022Updated 3 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Mar 11, 2016Updated 10 years ago
- Python unbup script for McAfee .bup files (with some additional fun features). This script is fully implemented in python it's not just a…☆37Apr 24, 2018Updated 7 years ago
- Rekall Forensics and Incident Response Framework with rVMI extensions☆33Mar 25, 2021Updated 4 years ago
- A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.☆488Feb 21, 2021Updated 5 years ago
- A Powershell incident response framework☆1,640Nov 22, 2022Updated 3 years ago
- Web App for Volatility framework☆390Jan 13, 2026Updated 2 months ago
- Allows you to quickly query a Windows machine for RAM artifacts☆219Jul 17, 2020Updated 5 years ago
- Malcom - Malware Communications Analyzer☆1,165Nov 29, 2017Updated 8 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 7 years ago
- Simulating Adversary Operations☆98Apr 13, 2018Updated 7 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆17Feb 5, 2016Updated 10 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Script for automating Linux memory capture and analysis☆274Feb 1, 2020Updated 6 years ago
- Extract unencrypted SSH keys from pageant memory dump☆15Oct 3, 2015Updated 10 years ago
- Page File analysis tools.☆131Dec 3, 2015Updated 10 years ago
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- A curated list of tools for incident response☆8,879Jul 18, 2024Updated last year
- Python tool and library to help analyze files during malware triage and analysis.☆78Jul 2, 2020Updated 5 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Nov 21, 2017Updated 8 years ago
- Incident Response Forensic Framework☆612Nov 20, 2019Updated 6 years ago
- Fast Incident Response☆1,999Mar 5, 2026Updated 2 weeks ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- This is a copy of the Registry Decoder repository from Google Code.☆29Aug 18, 2015Updated 10 years ago
- ☆453Nov 21, 2024Updated last year
- Windows Events Attack Samples☆2,526Jan 24, 2023Updated 3 years ago
- Create an incident response triage toolkit for use with Windows or Linux.☆18Jun 14, 2020Updated 5 years ago
- Binary commandline executable to parse ETL files☆69Jun 7, 2018Updated 7 years ago
- Salt States for Configuring the SIFT Workstation☆108Updated this week
- Extract common Windows artifacts from source images and VSCs☆65May 10, 2021Updated 4 years ago
- ☆17Mar 22, 2018Updated 8 years ago
- Quick lookup files for SUNBURST Backdoor☆12Dec 15, 2020Updated 5 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Mar 26, 2016Updated 9 years ago
- Some dfir stuff☆31Jan 12, 2022Updated 4 years ago