att / docker-forensicsLinks
Tools to assist in forensicating docker
☆84Updated 5 months ago
Alternatives and similar repositories for docker-forensics
Users that are interested in docker-forensics are comparing it to the libraries listed below
Sorting:
- 1-Click push forensics evidence to the cloud☆141Updated last year
- Checks with NSRL RDS servers looking for for hash matches☆114Updated 4 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 3 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- Digital Forensic Investigative Scripts☆83Updated 2 weeks ago
- Salt States for Configuring the SIFT Workstation☆105Updated 2 weeks ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Best practices in threat intelligence☆48Updated 2 years ago
- MantaRay Automated Computer Forensic Triage Tool☆64Updated 6 years ago
- automate your MISP installs☆68Updated 5 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 2 weeks ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Specifications used in the MISP project including MISP core format☆51Updated last month
- Different tools, koen.vanimpe@cudeso.be☆136Updated last month
- Volatility plugins created by the author☆44Updated 9 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- ☆34Updated 4 years ago
- A rewrite of mactime, a bodyfile reader☆40Updated last year
- InvestigationPlaybookSpec☆73Updated 7 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆67Updated 5 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆43Updated 8 years ago
- Expert Investigation Guides☆52Updated 4 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 3 years ago
- Different DFIR and CTI utilities☆37Updated 5 years ago
- Alienvault OTX TAXII connector☆56Updated 8 years ago
- Python IOC Editor☆63Updated 10 years ago