Alternatives and similar repositories for docker-forensics

Users that are interested in docker-forensics are comparing it to the libraries listed below

• google / GiftStick
  1-Click push forensics evidence to the cloud
  ☆141Updated last year
• rjhansen / nsrllookup
  Checks with NSRL RDS servers looking for for hash matches
  ☆114Updated 4 years ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆104Updated 2 weeks ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆73Updated 2 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆64Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• AlienVault-OTX / OTX-Apps-TAXII
  Alienvault OTX TAXII connector
  ☆56Updated 8 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• halpomeranz / dfis
  Digital Forensic Investigative Scripts
  ☆83Updated this week
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• airbus-cert / timeliner
  A rewrite of mactime, a bodyfile reader
  ☆40Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last month
• rjhansen / nsrlsvr
  ☆83Updated 2 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆52Updated 4 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆73Updated 7 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated 2 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• cudeso / tools
  Different tools, koen.vanimpe@cudeso.be
  ☆136Updated 2 weeks ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆91Updated 7 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 4 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆43Updated 5 years ago
• py4n6 / pyflag
  Python Forensic and Log Analysis GUI
  ☆26Updated 10 years ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆137Updated 5 years ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆196Updated 4 months ago
• MarkBaggett / werejugo
  Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
  ☆93Updated 4 years ago