DFIR notebooks GCIH Gold project, paper
☆12Apr 30, 2015Updated 10 years ago
Alternatives and similar repositories for dfirnotes
Users that are interested in dfirnotes are comparing it to the libraries listed below
Sorting:
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit☆29Jan 10, 2026Updated last month
- ☆18Sep 13, 2021Updated 4 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Oct 23, 2020Updated 5 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- ☆11Feb 9, 2023Updated 3 years ago
- Network sinkhole for isolated malware analysis☆40Mar 5, 2018Updated 7 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆69Aug 7, 2020Updated 5 years ago
- Crypto coin ticker counter for Reddit comments.☆10Dec 1, 2021Updated 4 years ago
- Security information and event management, masters's diploma☆10Aug 3, 2015Updated 10 years ago
- Example programs used in the automating DFIR series☆63Mar 4, 2019Updated 6 years ago
- Real-time Packet Observation Tool☆39Sep 26, 2023Updated 2 years ago
- Evidence Fetcher (efetch) is a web-based file explorer, viewer, and analyzer.☆39Apr 11, 2020Updated 5 years ago
- VitaDock Online API library, samples and wiki☆43Dec 16, 2022Updated 3 years ago
- The Sentinel.blog Repository provides automation tools for updating Analytics Rules, Content Hub Solutions, and Workbooks, eliminating re…☆17Updated this week
- DeTT&CT Editor☆12Jan 21, 2026Updated last month
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Mar 16, 2018Updated 7 years ago
- A Web Self Service Application for Generating OpenC2 Commands☆10Sep 26, 2019Updated 6 years ago
- 🌦️ Domain Ranker☆16Sep 7, 2019Updated 6 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12May 16, 2020Updated 5 years ago
- JSON-based DSLs are not for humans..☆10Sep 4, 2014Updated 11 years ago
- How can you track the hunting techniques you come up with?☆13Sep 3, 2017Updated 8 years ago
- Yara rules☆10Dec 10, 2019Updated 6 years ago
- Community-based CybergON-powered Suricata rules☆12Jul 5, 2022Updated 3 years ago
- ☆10Dec 28, 2015Updated 10 years ago
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Jun 13, 2016Updated 9 years ago
- A security-first MCP server empowering AI agents to orchestrate Ghidra, Radare2, and YARA for automated reverse engineering.☆47Jan 21, 2026Updated last month
- Telegram Bot that performs checks of the yararules.com ruleset☆13May 13, 2016Updated 9 years ago
- React Conf 2017: Cross-Platform Data Visualization in React & React Native☆13Mar 17, 2017Updated 8 years ago
- Yara rules I've written☆10Dec 9, 2015Updated 10 years ago
- snake-core - the real snake☆15Jul 11, 2023Updated 2 years ago
- Yara matching in ElasticSearch.☆10Jun 12, 2018Updated 7 years ago
- Redmine, Pomodoro.app and Todo-txt. Together.☆33Feb 21, 2017Updated 9 years ago
- Miscelaneous Dockers☆47Aug 26, 2021Updated 4 years ago
- Yara intergrated into BurpSuite☆48Jun 30, 2016Updated 9 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆45Aug 17, 2020Updated 5 years ago
- Create lab environment for Linux Command Line course☆49Sep 24, 2024Updated last year
- Toolkit for Machine Learning & Analytics Use Cases.☆13Aug 30, 2018Updated 7 years ago
- Some rules, scripts of some use to us☆11Oct 25, 2024Updated last year