Alternatives and similar repositories for IO

Users that are interested in IO are comparing it to the libraries listed below

• pstirparo / utils
  Different DFIR and CTI utilities
  ☆37Updated 5 years ago
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆63Updated 6 years ago
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆125Updated 2 years ago
• devgc / ElasticHandler
  Assorted classes and methods for indexing reports and retrieving information from an elastic index
  ☆21Updated 9 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆65Updated 6 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆37Updated 6 years ago
• herrcore / punbup
  Python unbup script for McAfee .bup files (with some additional fun features). This script is fully implemented in python it's not just a…
  ☆37Updated 7 years ago
• rjhansen / nsrlsvr
  ☆83Updated 3 years ago
• mdegrazia / Google-Analytic-Parser
  Parses for Google Analytic values in raw files like RAM, DD images etc.
  ☆18Updated 9 years ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated 2 months ago
• CrowdStrike / CrowdFMS
  CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…
  ☆131Updated 7 years ago
• rjhansen / nsrllookup
  Checks with NSRL RDS servers looking for for hash matches
  ☆114Updated 4 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆152Updated 5 years ago
• mandiant / Volatility-Plugins
  ☆82Updated 9 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆42Updated 5 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆82Updated 8 years ago
• jtmoran / parseRS
  Parses IE's Automatic Crash Recovery Files
  ☆16Updated 9 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆138Updated 3 years ago
• KPN-CISO / AttackMatrix
  AttackMatrix is a Python module and/or webpage to interact with and explore MITRE's ATT&CK's matrices.
  ☆17Updated 2 years ago
• mutedmouse / ta-volatility
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13Updated 7 years ago
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆39Updated 8 years ago
• chadgough / x-tensions
  X-Ways C# X-Tension API
  ☆15Updated 12 years ago
• Neo23x0 / awesome-yara
  A curated list of awesome YARA rules, tools, and people.
  ☆33Updated 2 years ago
• devgc / EventMonkey
  A Windows Event Processing Utility
  ☆47Updated 7 years ago
• nheijmans / malzoo
  Mass static malware analysis tool
  ☆94Updated 3 years ago
• ahoog42 / ios-triage
  incident response tool for iOS devices
  ☆49Updated 3 years ago
• MatthewClarkMay / fTriage
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Updated 6 years ago
• py4n6 / pyflag
  Python Forensic and Log Analysis GUI
  ☆27Updated 11 years ago