fox-it / citrix-netscaler-triage
Dissect triage script for Citrix NetScaler devices
☆22Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for citrix-netscaler-triage
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆31Updated 2 years ago
- The core backend server handling API requests and task management☆31Updated this week
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 5 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆25Updated 3 weeks ago
- C2 Active Scanner☆47Updated 4 months ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆17Updated last year
- Logbook for Digital Forensics and Incident Response☆49Updated 3 months ago
- USN Journal full path builder☆36Updated last month
- ESXi Cyber Security Incident Response Script☆20Updated 2 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆47Updated last week
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆28Updated 2 years ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆20Updated last month
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆68Updated 11 months ago
- Detection Engineering with YARA☆85Updated 10 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- Forensic Artifact Collection Tool Matrix☆73Updated 2 years ago
- Initial triage of Windows Event logs☆89Updated 4 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- VTC - Velociraptor Timeline Creator☆15Updated 5 months ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆47Updated last year
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆15Updated last year
- Offensive Research Guide to Help Defense Improve Detection☆29Updated last year
- A repository for tracking events related to the MOVEit Transfer Cl0p Campaign☆66Updated last year
- ☆82Updated 2 months ago
- ☆17Updated 2 months ago
- Remote access and Antivirus Logging Database☆41Updated 6 months ago