archanchoudhury / DFIR-ToolsLinks
This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
☆78Updated 3 years ago
Alternatives and similar repositories for DFIR-Tools
Users that are interested in DFIR-Tools are comparing it to the libraries listed below
Sorting:
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- Tools for simulating threats☆185Updated last year
- Some important DFIR Resources☆83Updated 2 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- Cybersecurity Incident Response Plan☆91Updated 4 years ago
- Resources To Learn And Understand SIGMA Rules☆175Updated 2 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆87Updated last year
- Practical Threat Detection Engineering, Published by Packt☆71Updated last year
- This repository contains Splunk queries to hunt some anomalies☆42Updated 2 years ago
- Incident Response documents and tooling☆74Updated last year
- ☆44Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆112Updated 6 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆253Updated 2 months ago
- ☆66Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated 2 years ago
- The Threat Actor Profile Guide for CTI Analysts☆107Updated last year
- A collection of various SIEM rules relating to malware family groups.☆66Updated 11 months ago
- A repository of my own Sigma detection rules.☆160Updated 8 months ago
- SentinelOne STAR Rules☆62Updated 3 months ago
- Collection of scripts and tools related to the eCTHPv2 exam by INE.☆14Updated 2 years ago
- Windows Malware Investigation Scripts & Docs☆83Updated 6 months ago
- A curated list of KAPE-related resources☆168Updated last month
- Harness the power of Splunk for your investigations☆107Updated 3 weeks ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆85Updated 3 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆254Updated last month
- Random notes collected on the intertubes relating to DFIR☆33Updated last year
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆55Updated 5 years ago
- ☆59Updated 4 years ago