google / turbinia

Related projects ⓘ

Alternatives and complementary repositories for turbinia

• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆296Updated this week
• ForensicArtifacts / artifacts
  Digital Forensics artifact repository
  ☆1,063Updated 3 months ago
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆491Updated 2 years ago
• TheHive-Project / Cortex-Analyzers
  Cortex Analyzers Repository
  ☆434Updated last week
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆482Updated 2 months ago
• google / cloud-forensics-utils
  Python library to carry out DFIR analysis on the Cloud
  ☆464Updated last month
• DFIRKuiper / Kuiper
  Digital Forensics Investigation Platform
  ☆769Updated last month
• uber-common / metta
  An information security preparedness tool to do adversarial simulation.
  ☆1,102Updated 5 years ago
• log2timeline / plaso
  Super timeline all the things
  ☆1,734Updated last month
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆393Updated last year
• atc-project / atomic-threat-coverage
  Actionable analytics designed to combat threats
  ☆972Updated 2 years ago
• olafhartong / ThreatHunting
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,138Updated last year
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆806Updated last month
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆862Updated this week
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆565Updated 4 months ago
• endgameinc / RTA
  ☆1,051Updated 5 years ago
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆531Updated this week
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆393Updated 2 years ago
• MISP / PyMISP
  Python library using the MISP Rest API
  ☆445Updated this week
• google / timesketch
  Collaborative forensic timeline analysis
  ☆2,616Updated last week
• CrowdStrike / automactc
  AutoMacTC: Automated Mac Forensic Triage Collector
  ☆532Updated 2 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆831Updated 9 months ago
• mitre-attack / attack-scripts
  Scripts and a (future) library to improve users' interactions with the ATT&CK content
  ☆582Updated 11 months ago
• OTRF / OSSEM
  Open Source Security Events Metadata (OSSEM)
  ☆1,238Updated last year
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆463Updated 5 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆334Updated 2 years ago
• orlikoski / CyLR
  CyLR - Live Response Collection Tool
  ☆647Updated 2 years ago
• MISP / misp-modules
  Modules for expansion services, enrichment, import and export in MISP and other tools.
  ☆345Updated this week
• yampelo / beagle
  Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
  ☆1,272Updated last year
• sans-blue-team / blue-team-wiki
  Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
  ☆441Updated 2 years ago