☆23Oct 9, 2024Updated last year
Alternatives and similar repositories for triage-collector
Users that are interested in triage-collector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆26Mar 22, 2023Updated 3 years ago
- ☆21Nov 19, 2025Updated 7 months ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆10Apr 22, 2024Updated 2 years ago
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 7 months ago
- Windows Event Log Knowledge Base☆33May 16, 2026Updated last month
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Sep 7, 2023Updated 2 years ago
- ☆10Feb 11, 2022Updated 4 years ago
- RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.☆327Sep 3, 2023Updated 2 years ago
- コンテナ内から安全にダークウェブをクローリングするための環境☆14Jan 17, 2023Updated 3 years ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆23Oct 31, 2018Updated 7 years ago
- Sample evtx files to use for testing hayabusa detection rules☆65Nov 5, 2025Updated 7 months ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.☆72Oct 13, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Simple CLI utility to save off an image from every webcam hooked into a mac☆14May 20, 2021Updated 5 years ago
- Tools for macOS Forensic Bootable media☆16May 20, 2020Updated 6 years ago
- ☆62Oct 12, 2024Updated last year
- ☆14Jun 1, 2026Updated 2 weeks ago
- Slides and material from my conference presentations☆16Mar 30, 2024Updated 2 years ago
- Basically a KrabsETW rip-off written in Rust☆91Oct 20, 2025Updated 7 months ago
- The plan is to have a replacement for psexec☆32Aug 15, 2018Updated 7 years ago
- CyberChef update scripts in PowerShell & Bash☆18Apr 22, 2024Updated 2 years ago
- PowerShell Script Analyzer☆68Oct 26, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A command-line tool and Python library for parsing Windows Master File Table ($MFT) and importing the results into Elasticsearch.☆13Jun 3, 2026Updated 2 weeks ago
- A command-line tool for efficiently extracting files, directories, and alternate data streams directly from NTFS image files.☆22Jun 1, 2026Updated 2 weeks ago
- an open source python deobfuscator for pyobfuscate.com☆39Jul 28, 2024Updated last year
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place☆10Aug 26, 2018Updated 7 years ago
- Desktop application to generate dummy files☆14May 3, 2024Updated 2 years ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆159May 11, 2026Updated last month
- A simple guideline for MacOs Security.☆13Jun 15, 2022Updated 4 years ago
- Imphash-like calculation on Golang binaries☆50Jul 2, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆90May 18, 2026Updated last month
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 3 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated 2 years ago
- Autopsy Module to analyze Registry Hives☆16Feb 18, 2022Updated 4 years ago
- ☆15Sep 26, 2022Updated 3 years ago
- Generic Signature Format for SIEM Systems☆18Jul 25, 2023Updated 2 years ago