Velocidex / cloudveloLinks
An experimental Velociraptor implementation using cloud infrastructure
☆25Updated last week
Alternatives and similar repositories for cloudvelo
Users that are interested in cloudvelo are comparing it to the libraries listed below
Sorting:
- Thor Artifacts for Velociraptor☆16Updated 11 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- ESXi Cyber Security Incident Response Script☆22Updated 8 months ago
- ☆17Updated 9 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- ☆42Updated last year
- Can you pay the ransom in your country?☆14Updated last year
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago
- CLI generator for Velociraptor offline collector☆9Updated 8 months ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Detection rule validation☆41Updated last year
- Quick ESXi Log Parser☆20Updated 4 months ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 3 months ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.☆16Updated 5 months ago
- ☆11Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Updated 2 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 2 months ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆28Updated 2 years ago
- A YARA & Malware Analysis Toolkit written in Rust.☆31Updated last week
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 10 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆27Updated this week