herosi / triage-collectorLinks
☆23Updated 11 months ago
Alternatives and similar repositories for triage-collector
Users that are interested in triage-collector are comparing it to the libraries listed below
Sorting:
- ☆36Updated 2 years ago
- ☆33Updated 3 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- ETW forensic tool for Volatility3 plugin☆16Updated 10 months ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- Quick ESXi Log Parser☆26Updated 3 weeks ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Updated 2 years ago
- ☆15Updated 3 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- A set of tools for collecting forensic information☆26Updated 5 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 3 years ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated 2 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 4 years ago
- ShellSweeping the evil.☆53Updated last year
- ☆27Updated 3 years ago
- Lazarus analysis tools and research report☆56Updated last year
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Updated 2 years ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 9 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆71Updated 3 months ago
- Collection of generic YARA rules☆16Updated last month
- Documentation and parsers for different anti-virus quarantine formats.☆42Updated 4 years ago
- Yara rules☆22Updated 2 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 8 months ago
- ☆19Updated 8 months ago
- ☆21Updated 6 months ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆59Updated 4 months ago
- Manipulate timestamps on NTFS☆52Updated 10 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 8 months ago