ericw317 / TrailBytesLinks
Follow the trail of breadcrumbs left behind by any user on a computer or mounted disk image.
☆32Updated 5 months ago
Alternatives and similar repositories for TrailBytes
Users that are interested in TrailBytes are comparing it to the libraries listed below
Sorting:
- MS Graph Commands and Tools for Blue Teamers☆52Updated 2 years ago
- Contains compiled binaries of Volatility☆37Updated 8 months ago
- PowerShell Script Analyzer☆70Updated 2 years ago
- ☆52Updated 5 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆82Updated 9 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- Detection rule validation☆40Updated 2 years ago
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆38Updated 9 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆126Updated last year
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Updated 11 months ago
- A repository for tracking events related to the MOVEit Transfer Cl0p Campaign☆71Updated 2 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated last month
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆53Updated 2 years ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated 2 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 7 months ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆50Updated last year
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆84Updated last year
- ☆32Updated last year
- Baseline a Windows System against LOLBAS☆70Updated this week
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆69Updated 2 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆162Updated 10 months ago
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated 2 years ago
- A YARA & Malware Analysis Toolkit written in Rust.☆91Updated 3 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- Living off the False Positive!☆41Updated last year
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17Updated 8 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆33Updated last year
- Tools and scripts to deploy and manage OpenRelik instances☆16Updated 7 months ago
- yara detection rules for hunting with the threathunting-keywords project☆157Updated 8 months ago