dfrws / dfrws2023-challengeLinks
The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically focusing on programmable logic controllers (PLC). This challenge aims to provide deeper insights into ICS network traffic analysis and device memory in a real-world scenario.
☆54Updated last year
Alternatives and similar repositories for dfrws2023-challenge
Users that are interested in dfrws2023-challenge are comparing it to the libraries listed below
Sorting:
- Forensic Artifact Collection Tool Matrix☆90Updated 10 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- A YARA & Malware Analysis Toolkit written in Rust.☆50Updated this week
- Detection Engineering with YARA☆87Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆86Updated 9 months ago
- Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.☆45Updated 3 years ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆89Updated last week
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆104Updated last year
- A specification and style guide for YARA rules☆56Updated last year
- BlackBerry Threat Research & Intelligence☆99Updated last year
- JPCERT/CC public YARA rules repository☆110Updated 9 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- ☆68Updated 2 weeks ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆32Updated 3 years ago
- Sample evtx files to use for testing hayabusa detection rules☆60Updated 11 months ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆108Updated this week
- The core backend server handling API requests and task management☆48Updated last week
- Repository that contains a set of purposefully erroneous Yara rules.☆59Updated 2 months ago
- Memory Forensic System on Cloud☆91Updated last year
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆32Updated last week
- Aralez is a triage tool for Windows and Linux that automates the collection of system information, network/process data, and files.☆20Updated this week
- A Windows Event Log MCP☆37Updated last month
- ☆18Updated 9 months ago
- Contains compiled binaries of Volatility☆35Updated 4 months ago
- ☆96Updated 2 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆71Updated 3 months ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆84Updated last year
- Augmentation to Machine Readable CTI☆34Updated 3 weeks ago
- Powershell sandboxing utility☆19Updated last week
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year