BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.
☆43Nov 27, 2022Updated 3 years ago
Alternatives and similar repositories for BulkStrike
Users that are interested in BulkStrike are comparing it to the libraries listed below
Sorting:
- ☆29Aug 12, 2021Updated 4 years ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆30Mar 2, 2021Updated 5 years ago
- Real-time Response scripts and schema☆122Oct 23, 2025Updated 4 months ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Dec 18, 2024Updated last year
- ☆84Mar 1, 2024Updated 2 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Jul 16, 2019Updated 6 years ago
- ☆172Feb 19, 2026Updated 2 weeks ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 6 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆215May 23, 2020Updated 5 years ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- GUI for regripper☆11Mar 19, 2019Updated 6 years ago
- A script to assist in processing forensic RAM captures for malware triage☆26Feb 4, 2021Updated 5 years ago
- The CrowdStrike Falcon SDK for Python☆477Jan 1, 2026Updated 2 months ago
- Defender Resource Hub☆30Feb 23, 2026Updated 2 weeks ago
- A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…☆12Jul 15, 2020Updated 5 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Searches for Insider Threat Hunting☆29May 2, 2019Updated 6 years ago
- A collection of projects supporting Azure Integrations☆32Dec 1, 2025Updated 3 months ago
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 3 months ago
- PoC code from blog☆16Mar 10, 2020Updated 5 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Apr 6, 2024Updated last year
- Tor Web Scraper, dnmap CnC, and Forensic Disk Analyzer☆17May 25, 2017Updated 8 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆18Feb 13, 2022Updated 4 years ago
- ☆38Jan 3, 2022Updated 4 years ago
- Wazuh integration TheHive☆41Feb 21, 2023Updated 3 years ago
- Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK☆48Feb 10, 2026Updated last month
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Repository for all cbapi example scripts☆16Sep 18, 2018Updated 7 years ago
- A curated list of KAPE-related resources☆182May 1, 2025Updated 10 months ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆56Jan 24, 2018Updated 8 years ago
- PowerShell for CrowdStrike's OAuth2 APIs☆460Feb 27, 2026Updated last week
- ☆17Jul 19, 2021Updated 4 years ago
- Takes a list of domains as the input, checks if they have a security.txt, outputs the results.☆16May 15, 2020Updated 5 years ago
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 6 months ago
- Reflective DLL that hooks the creation of the UAC prompt popped by explorer.exe for privilege escalation.☆22Feb 20, 2021Updated 5 years ago
- All the useful tools interesting to be used☆24Sep 20, 2022Updated 3 years ago
- incident response scripts☆18Mar 4, 2019Updated 7 years ago
- Falcon Integration Gateway (FIG)☆23Updated this week