ericw317 / TrailBytes
Follow the trail of breadcrumbs left behind by any user on a computer or mounted disk image.
☆29Updated 5 months ago
Alternatives and similar repositories for TrailBytes
Users that are interested in TrailBytes are comparing it to the libraries listed below
Sorting:
- Contains compiled binaries of Volatility☆33Updated 3 months ago
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆54Updated 6 months ago
- ☆22Updated 3 months ago
- ☆32Updated last year
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 9 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated last year
- ☆23Updated 2 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆113Updated last week
- Quick ESXi Log Parser☆19Updated 4 months ago
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆14Updated this week
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆32Updated 2 months ago
- Tools and scripts to deploy and manage OpenRelik instances☆13Updated 2 months ago
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆39Updated 3 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆55Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…☆13Updated 4 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- A tool for fetching DFIR and other GitHub tools.☆23Updated last week
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆41Updated 3 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last week
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆123Updated last year
- Living off the False Positive!☆35Updated 3 months ago
- ☆20Updated last year
- ☆32Updated 2 years ago
- CarbonBlack EDR detection rules and response actions☆71Updated 8 months ago
- A series of python scripts to extract information from Dark Web Applications☆12Updated last month
- MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…☆29Updated last year
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆51Updated 2 months ago
- VTC - Velociraptor Timeline Creator☆18Updated 11 months ago