bcarrier / awesome-incident-response
A curated list of tools for incident response
☆12Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for awesome-incident-response
- An advanced parser for INDX records☆27Updated 5 years ago
- Hunt malware with Volatility☆47Updated 6 months ago
- ReWrite of AChoir in Go for Cross Platform☆35Updated last week
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆35Updated last year
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆25Updated last year
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆53Updated last year
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆50Updated 2 years ago
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆22Updated 6 months ago
- Logbook for Digital Forensics and Incident Response☆49Updated 4 months ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆39Updated 2 years ago
- Parses KAPE module files and downloads binaries referenced by BinaryURL☆18Updated 5 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆16Updated 3 months ago
- Cyber Threats Detection Rules☆13Updated 2 months ago
- Git for me to put all my forensics stuff☆21Updated 2 months ago
- Script to automate Linux live evidence collection☆27Updated 2 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆20Updated 3 years ago
- PyVelociraptor contains the python bindings for the Velociraptor API.☆16Updated 2 months ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- /ˈhäjˌpäj/ "a confused mixture."