adricnet/dfirnotes external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

adricnet/dfirnotes

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/adricnet/dfirnotes)

Close

adricnet / dfirnotesView on GitHubMore

• External links
• Readme badge

DFIR notebooks GCIH Gold project, paper

☆12Apr 30, 2015Updated 10 years ago

Alternatives and similar repositories for dfirnotes

Users that are interested in dfirnotes are comparing it to the libraries listed below

• iAbdullahMughal / dscan

  View on GitHub
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Jan 10, 2026Updated 2 months ago
• aldonin / SIEM

  View on GitHub
  Security information and event management, masters's diploma
  ☆10Aug 3, 2015Updated 10 years ago
• UNIT777 / Email2TheHive

  View on GitHub
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Jul 13, 2017Updated 8 years ago
• Medisana / vitadock-api

  View on GitHub
  VitaDock Online API library, samples and wiki
  ☆43Dec 16, 2022Updated 3 years ago
• wagga40 / Zircolite-Rules

  View on GitHub
  Sigma rules converted for direct use with Zircolite
  ☆14Updated this week
• sk4la / plast

  View on GitHub
  Modular command-line threat hunting tool & framework.
  ☆17Jul 20, 2020Updated 5 years ago
• wolfvan / YaraRET

  View on GitHub
  Carving tool based in Radare2 & Yara
  ☆16Oct 30, 2018Updated 7 years ago
• amir9339 / volatility-docker

  View on GitHub
  A suite of Volatility 3 plugins for memory forensics of Docker containers
  ☆18Jan 10, 2024Updated 2 years ago
• Dan6erbond / reddit-comments-crypto-counter

  View on GitHub
  Crypto coin ticker counter for Reddit comments.
  ☆10Dec 1, 2021Updated 4 years ago
• CapacitorSet / elasticsearch-yara

  View on GitHub
  Yara matching in ElasticSearch.
  ☆10Jun 12, 2018Updated 7 years ago
• GoSecure / malware-ioc

  View on GitHub
  Indicators of Compromise (IOCs) for malware we have researched
  ☆11Aug 8, 2023Updated 2 years ago
• radicalrobot / allergy-tracker

  View on GitHub
  App for tracking allergic reactions and their potential causes
  ☆11Sep 20, 2016Updated 9 years ago
• Cyberg-ON / Timon-Rules

  View on GitHub
  Community-based CybergON-powered Suricata rules
  ☆12Jul 5, 2022Updated 3 years ago
• haidermdost / Threat-Detection-Maturity-Framework

  View on GitHub
  ☆18Sep 13, 2021Updated 4 years ago
• shendo / netsink

  View on GitHub
  Network sinkhole for isolated malware analysis
  ☆40Mar 5, 2018Updated 8 years ago
• neumann-mlucas / StringArt.jl

  View on GitHub
  String Art Generator written in Julia
  ☆16Jun 23, 2025Updated 8 months ago
• Phillipmartin / snortsig

  View on GitHub
  ☆10Dec 28, 2015Updated 10 years ago
• packetinspector / AlienVault-Plugins

  View on GitHub
  Plug-ins for AlienVault of course.
  ☆16Jul 5, 2017Updated 8 years ago
• rshk / MongoSQL

  View on GitHub
  JSON-based DSLs are not for humans..
  ☆10Sep 4, 2014Updated 11 years ago
• globocom / measures

  View on GitHub
  Backstage Measure
  ☆17Oct 18, 2023Updated 2 years ago
• openfootball / league-starter

  View on GitHub
  football.db league quick starter sample - start your own leagues & cups
  ☆15Jan 27, 2026Updated last month
• PolitoInc / Yara-Scanner

  View on GitHub
  Yara intergrated into BurpSuite
  ☆48Jun 30, 2016Updated 9 years ago
• stven0king / launchanywhere

  View on GitHub
  study launch anywhere and bundle mismatch bug
  ☆17Apr 23, 2023Updated 2 years ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago
• stefanoverna / redpomo

  View on GitHub
  Redmine, Pomodoro.app and Todo-txt. Together.
  ☆33Feb 21, 2017Updated 9 years ago
• GeekOnlineCode / Code

  View on GitHub
  ☆15Nov 29, 2017Updated 8 years ago
• pstirparo / yara_rules

  View on GitHub
  Yara rules I've written
  ☆10Dec 9, 2015Updated 10 years ago
• darktools / DarkToolsFramework

  View on GitHub
  ☆12Aug 1, 2017Updated 8 years ago
• PythonForensics / Python-Digital-Forensics-Cookbook

  View on GitHub
  Python Digital Forensics Cookbook by Packt
  ☆17Feb 29, 2020Updated 6 years ago
• 3vangel1st / Yara

  View on GitHub
  Yara rules
  ☆10Dec 10, 2019Updated 6 years ago
• tiny-honeypot / thp

  View on GitHub
  Tiny Honeypot
  ☆19Aug 9, 2013Updated 12 years ago
• JouniMi / TheDFIRThing

  View on GitHub
  ☆22Aug 29, 2024Updated last year
• xme / dockers

  View on GitHub
  Miscelaneous Dockers
  ☆47Aug 26, 2021Updated 4 years ago
• rust-vmm / vfio-ioctls

  View on GitHub
  Safe wrappers for VFIO
  ☆15Nov 30, 2021Updated 4 years ago
• genalt / blkinfo

  View on GitHub
  blkinfo is a python package to list information about all available or the specified block devices.
  ☆11Aug 6, 2023Updated 2 years ago
• nccgroup / Royal_APT

  View on GitHub
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Mar 16, 2018Updated 8 years ago
• actuated / check-smb-signing

  View on GitHub
  Shell script to automate running the Nmap smb-security-mode.nse or RunFinger.py by lgandx and parse results into counts and lists of host…
  ☆14Nov 3, 2017Updated 8 years ago
• WithSecureLabs / snake-core

  View on GitHub
  snake-core - the real snake
  ☆15Jul 11, 2023Updated 2 years ago
• splunk / quickstart-splunk-enterprise

  View on GitHub
  Splunk Enterprise on AWS - QuickStart
  ☆14Oct 9, 2022Updated 3 years ago