dfrws / dfrws2023-challengeLinks
The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically focusing on programmable logic controllers (PLC). This challenge aims to provide deeper insights into ICS network traffic analysis and device memory in a real-world scenario.
☆55Updated last year
Alternatives and similar repositories for dfrws2023-challenge
Users that are interested in dfrws2023-challenge are comparing it to the libraries listed below
Sorting:
- Forensic Artifact Collection Tool Matrix☆91Updated last year
- Detection Engineering with YARA☆86Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆106Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆34Updated 2 months ago
- BlackBerry Threat Research & Intelligence☆99Updated 2 years ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆98Updated last week
- A specification and style guide for YARA rules☆63Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆87Updated last year
- ☆67Updated last month
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆32Updated 3 years ago
- The core backend server handling API requests and task management☆55Updated 3 weeks ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.☆46Updated 3 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆113Updated 2 weeks ago
- JPCERT/CC public YARA rules repository☆110Updated last month
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆83Updated last year
- ☆100Updated 3 weeks ago
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆34Updated 2 months ago
- Sample evtx files to use for testing hayabusa detection rules☆63Updated last month
- ☆18Updated last year
- YARA rule analyzer to improve rule quality and performance☆107Updated 8 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆65Updated 2 years ago
- Open Threat Hunting Framework☆121Updated 2 years ago
- A YARA & Malware Analysis Toolkit written in Rust.☆86Updated 2 months ago
- An open source platform to support analysts to organise their case and tasks☆117Updated 2 weeks ago
- The SOLVE-IT knowledge base for digital forensics☆56Updated 2 weeks ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆114Updated 7 months ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆93Updated 2 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆81Updated 6 months ago