dfrws / dfrws2023-challengeLinks
The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically focusing on programmable logic controllers (PLC). This challenge aims to provide deeper insights into ICS network traffic analysis and device memory in a real-world scenario.
☆50Updated last year
Alternatives and similar repositories for dfrws2023-challenge
Users that are interested in dfrws2023-challenge are comparing it to the libraries listed below
Sorting:
- Forensic Artifact Collection Tool Matrix☆85Updated 7 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- The core backend server handling API requests and task management☆42Updated last week
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 6 months ago
- Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.☆45Updated 2 years ago
- A specification and style guide for YARA rules☆50Updated last year
- Detection Engineering with YARA☆87Updated last year
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆31Updated 3 years ago
- Contains compiled binaries of Volatility☆34Updated last month
- ☆68Updated 6 months ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆75Updated 2 weeks ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆103Updated last year
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆37Updated 3 weeks ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- Augmentation to Machine Readable CTI☆31Updated 2 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆69Updated last year
- Chrome Logs Events and Protobuf Parser☆39Updated 2 years ago
- Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…☆18Updated last year
- Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite☆17Updated 2 years ago
- A YARA & Malware Analysis Toolkit written in Rust.☆35Updated last week
- Quick ESXi Log Parser☆22Updated 5 months ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- JPCERT/CC public YARA rules repository☆110Updated 6 months ago
- Sample evtx files to use for testing hayabusa detection rules☆57Updated 8 months ago
- ☆18Updated 6 months ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆30Updated 2 months ago
- Harness the power of Splunk for your investigations☆114Updated last week
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last week