google / docker-explorer
A tool to help forensicate offline docker acquisitions
☆533Updated 3 months ago
Alternatives and similar repositories for docker-explorer:
Users that are interested in docker-explorer are comparing it to the libraries listed below
- (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…☆633Updated last year
- A framework for orchestrating forensic collection, processing and data export☆303Updated this week
- Automation and Scaling of Digital Forensics Tools☆755Updated 2 weeks ago
- Python installable command line utiltity for mitigation of host and key compromises.☆344Updated 3 years ago
- Real-time, container-based file scanning at enterprise scale☆893Updated last month
- A repository for using osquery for incident detection and response☆834Updated 2 years ago
- Python library to carry out DFIR analysis on the Cloud☆468Updated last month
- Remote Memory Acquisition Tool☆245Updated 4 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆777Updated 4 years ago
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆298Updated 2 months ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆497Updated 2 years ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆533Updated 10 months ago
- Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.☆694Updated this week
- an osquery fleet manager☆619Updated 2 years ago
- A production-friendly malware scanner for your AWS cloud☆198Updated 3 years ago
- DFIRTrack - The Incident Response Tracking Application☆487Updated 4 months ago
- An information security preparedness tool to do adversarial simulation.☆1,106Updated 5 years ago
- Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.☆326Updated 4 months ago
- Incident Response Forensic Framework☆600Updated 5 years ago
- Fast and efficient osquery management☆402Updated last week
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆323Updated last year
- A container analysis and exploitation tool for pentesters and engineers.☆655Updated last year
- AutoMacTC: Automated Mac Forensic Triage Collector☆537Updated 2 years ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆252Updated 2 months ago
- Builds malware analysis Windows VMs so that you don't have to.☆1,036Updated 3 years ago
- Production-ready detection & response queries for osquery☆535Updated this week
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆334Updated 2 years ago
- An open source framework for enterprise level automated analysis.☆395Updated 2 years ago
- File Scanning Framework☆289Updated 3 years ago
- This repository contains Dockerfiles for building Docker images of popular malware analysis tools, which are distributed through the REMn…☆267Updated last year