fireeye / HXToolLinks
HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physical workstation. HXTool provides additional features and capabilities over the standard FireEye HX web user interface. HXTool uses the fully documented REST API that comes with the FireEye HX for communication w…
☆84Updated last year
Alternatives and similar repositories for HXTool
Users that are interested in HXTool are comparing it to the libraries listed below
Sorting:
- Blueteam operational triage registry hunting/forensic tool.☆149Updated 2 years ago
- Automagically extract forensic timeline from volatile memory dump☆132Updated last year
- ☆88Updated last month
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.☆65Updated 2 years ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆75Updated last year
- Collection of useful, up to date, Carbon Black Response Queries☆84Updated 4 years ago
- ☆35Updated 10 months ago
- Hunt malware with Volatility☆47Updated last month
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Winterfell is a group of windows batch scripts to collect Windows forensics data and perform efficient, and fast incident response and th…☆52Updated 5 years ago
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago
- ☆69Updated 6 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- Active Directory Purple Team Playbook☆110Updated 2 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- Python library for threat intelligence☆87Updated 7 months ago
- ☆149Updated last year
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated 2 months ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆125Updated 3 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆169Updated 2 years ago
- Automatically create YARA rules from malicious documents.☆212Updated 3 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆115Updated last year