Alternatives and similar repositories for fastfinder

Users that are interested in fastfinder are comparing it to the libraries listed below

• OWNsecurity / fastir_artifacts
  Live forensic artifacts collector
  ☆171Updated last year
• Securonix / AutonomousThreatSweeper
  Threat Hunting queries for various attacks
  ☆239Updated this week
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆156Updated 3 years ago
• 3CORESec / MAL-CL
  MAL-CL (Malicious Command-Line)
  ☆317Updated 2 years ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆96Updated 2 months ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆119Updated 11 months ago
• pr0xylife / Qakbot
  ☆197Updated last year
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆248Updated 5 months ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆106Updated 3 years ago
• lucky-luk3 / Grafiki
  Threat Hunting tool about Sysmon and graphs
  ☆334Updated 2 years ago
• WithSecureLabs / LinuxCatScale
  Incident Response collection and processing scripts with automated reporting scripts
  ☆309Updated last year
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆170Updated 2 years ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆198Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆148Updated 4 months ago
• vmware-labs / attack-surface-framework
  Tool to discover external and internal network attack surface
  ☆203Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• MazX0p / ThreatHound
  ☆160Updated last year
• nasbench / MindMaps
  #ThreatHunting #DFIR #Malware #Detection Mind Maps
  ☆301Updated 3 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆162Updated 10 months ago
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆188Updated 3 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 7 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆61Updated 10 months ago
• 0xDanielLopez / TweetFeed_code
  Source code used at TweetFeed.live
  ☆44Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆200Updated this week
• curated-intel / Log4Shell-IOCs
  A collection of intelligence about Log4Shell and its exploitation activity.
  ☆184Updated 3 years ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆102Updated last year
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆292Updated 4 months ago
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆331Updated 4 months ago