Alternatives and similar repositories for artifactcollector

Users that are interested in artifactcollector are comparing it to the libraries listed below

• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆263Updated last year
• LDO-CERT / orochi
  The Volatility Collaborative GUI
  ☆248Updated last week
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆196Updated last month
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆325Updated this week
• OWNsecurity / fastir_artifacts
  Live forensic artifacts collector
  ☆168Updated last year
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆107Updated this week
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆231Updated last week
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆187Updated this week
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆171Updated 3 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆164Updated last year
• AndrewRathbun / DFIRArtifactMuseum
  The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…
  ☆599Updated 4 months ago
• muteb / Hoarder
  This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …
  ☆201Updated 4 years ago
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆327Updated 2 months ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆111Updated last year
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆83Updated last year
• AbdulRhmanAlfaifi / Fennec
  Artifact collection tool for *nix systems
  ☆208Updated last year
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆131Updated 4 months ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆116Updated 2 years ago
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆158Updated 3 months ago
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆186Updated 3 years ago
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆287Updated 6 months ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆141Updated last week
• lucky-luk3 / Grafiki
  Threat Hunting tool about Sysmon and graphs
  ☆334Updated 2 years ago
• StrangerealIntel / EternalLiberty
  ☆207Updated last month
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆117Updated last month
• ReconInfoSec / velociraptor-to-timesketch
  ☆8Updated 9 months ago
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆355Updated 2 months ago
• AndrewRathbun / VanillaWindowsReference
  A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …
  ☆170Updated 8 months ago
• AndrewRathbun / DFIRMindMaps
  A repository of DFIR-related Mind Maps geared towards the visual learners!
  ☆527Updated 2 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆153Updated 4 months ago