abdulshareef / DFIR-Resources
Some important DFIR Resources
☆83Updated last year
Alternatives and similar repositories for DFIR-Resources:
Users that are interested in DFIR-Resources are comparing it to the libraries listed below
- Windows Malware Investigation Scripts & Docs☆75Updated 2 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆150Updated 8 months ago
- The Threat Actor Profile Guide for CTI Analysts☆103Updated last year
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆75Updated 2 years ago
- Case_Notes.py is a cross-platform (Windows, macOS, & Linux) python script to help make the documentation process easier.☆26Updated last year
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆190Updated 6 months ago
- ☆64Updated 2 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆82Updated last week
- SIEM Cheat Sheet☆73Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆115Updated last year
- Harness the power of Splunk for your investigations☆84Updated 2 months ago
- ☆95Updated 2 weeks ago
- CarbonBlack EDR detection rules and response actions☆71Updated 4 months ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆75Updated 8 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆218Updated last year
- MISP Playbooks☆182Updated last week
- Intelligence Architecture Mind Map☆121Updated 10 months ago
- Some Threat Hunting queries useful for blue teamers☆124Updated 2 years ago
- A repository of my own Sigma detection rules.☆157Updated 4 months ago
- A collection of CVEs weaponized by ransomware operators☆103Updated 3 weeks ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆81Updated last year
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆65Updated last year
- Incident Response documents and tooling☆68Updated last year
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆177Updated this week
- Tools for simulating threats☆181Updated last year
- A collection of various SIEM rules relating to malware family groups.☆65Updated 7 months ago
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆56Updated 2 months ago
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆198Updated 9 months ago
- Cyber Underground General Intelligence Requirements☆89Updated 11 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆274Updated 5 months ago