cado-security / DFIR_Resources_REvil_KaseyaLinks
Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
☆182Updated 3 years ago
Alternatives and similar repositories for DFIR_Resources_REvil_Kaseya
Users that are interested in DFIR_Resources_REvil_Kaseya are comparing it to the libraries listed below
Sorting:
- ☆130Updated last year
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆118Updated 2 years ago
- MAL-CL (Malicious Command-Line)☆313Updated 2 years ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- IOC from articles, tweets for archives☆313Updated last year
- Threat Hunting tool about Sysmon and graphs☆333Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆147Updated 2 years ago
- Misc Threat Hunting Resources☆373Updated 2 years ago
- A list of my personal projects☆177Updated 2 years ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆114Updated last year
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆130Updated 3 years ago
- ☆87Updated last year
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆202Updated 4 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆525Updated 2 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆105Updated 3 years ago
- #ThreatHunting #DFIR #Malware #Detection Mind Maps☆297Updated 3 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆224Updated 4 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆166Updated 2 years ago
- ☆226Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆313Updated 3 weeks ago
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆174Updated 2 years ago
- Collect information of Windows PC when doing incident response☆253Updated 2 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- ☆195Updated last year