att / docker-forensicsLinks
Tools to assist in forensicating docker
☆84Updated 3 months ago
Alternatives and similar repositories for docker-forensics
Users that are interested in docker-forensics are comparing it to the libraries listed below
Sorting:
- misp-cloud - Cloud-ready images of MISP☆73Updated 2 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Salt States for Configuring the SIFT Workstation☆104Updated this week
- 1-Click push forensics evidence to the cloud☆141Updated last year
- Volatility plugins created by the author☆44Updated 9 years ago
- A rewrite of mactime, a bodyfile reader☆37Updated 10 months ago
- Volatility plugins developed and maintained by the community☆21Updated 9 months ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Intrusion Detection Honeypots Book Code☆25Updated 4 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Tools to automate and/or expedite response.☆115Updated 11 months ago
- Invoke-LiveResponse☆148Updated 3 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Different tools, koen.vanimpe@cudeso.be☆131Updated last week
- Security Onion Elastic Stack☆46Updated 4 years ago
- automate your MISP installs☆68Updated 4 years ago
- ☆55Updated 3 years ago
- InvestigationPlaybookSpec☆73Updated 7 years ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 4 years ago
- ☆64Updated 4 months ago
- ☆15Updated 8 years ago
- Expert Investigation Guides☆51Updated 4 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Simple yara rule manager☆66Updated 2 years ago
- Python script to batch query the Tor Relays and Bridges☆36Updated 6 years ago
- Python Forensic and Log Analysis GUI☆26Updated 10 years ago
- Different DFIR and CTI utilities☆37Updated 5 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- A system that creates a bogus web structure to entrap and delay web scanners☆60Updated 4 years ago