☆23Oct 9, 2024Updated last year
Alternatives and similar repositories for triage-collector
Users that are interested in triage-collector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆26Mar 22, 2023Updated 3 years ago
- ☆21Nov 19, 2025Updated 7 months ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆10Apr 22, 2024Updated 2 years ago
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 8 months ago
- Windows Event Log Knowledge Base☆34Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆95Sep 7, 2023Updated 2 years ago
- ☆10Feb 11, 2022Updated 4 years ago
- RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.☆329Sep 3, 2023Updated 2 years ago
- コンテナ内から安全にダークウェブをクローリングするための環境☆14Jan 17, 2023Updated 3 years ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆24Oct 31, 2018Updated 7 years ago
- Sample evtx files to use for testing hayabusa detection rules☆70Nov 5, 2025Updated 8 months ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.☆73Oct 13, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Simple CLI utility to save off an image from every webcam hooked into a mac☆14May 20, 2021Updated 5 years ago
- Tools for macOS Forensic Bootable media☆16May 20, 2020Updated 6 years ago
- ☆62Oct 12, 2024Updated last year
- ☆14Updated this week
- Slides and material from my conference presentations☆16Mar 30, 2024Updated 2 years ago
- Basically a KrabsETW rip-off written in Rust☆92Oct 20, 2025Updated 8 months ago
- The plan is to have a replacement for psexec☆32Aug 15, 2018Updated 7 years ago
- CyberChef update scripts in PowerShell & Bash☆18Apr 22, 2024Updated 2 years ago
- PowerShell Script Analyzer☆68Oct 26, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A command-line tool for parsing Windows Master File Table ($MFT) and importing the results into Elasticsearch.☆13Jun 3, 2026Updated last month
- A command-line tool for efficiently extracting files, directories, and alternate data streams directly from NTFS image files.☆22Jun 1, 2026Updated last month
- an open source python deobfuscator for pyobfuscate.com☆39Jul 28, 2024Updated last year
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place☆10Aug 26, 2018Updated 7 years ago
- Desktop application to generate dummy files☆14May 3, 2024Updated 2 years ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆160Jun 29, 2026Updated last week
- A simple guideline for MacOs Security.☆13Jun 15, 2022Updated 4 years ago
- Imphash-like calculation on Golang binaries☆50Jul 2, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 分析ツール結果シート☆24Jun 10, 2026Updated 3 weeks ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆91Jun 28, 2026Updated last week
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- Honeybag helps you to create 'bait archive' with any folders and files, notify you if someone accesses it☆17Sep 30, 2020Updated 5 years ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 4 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated 2 years ago
- Autopsy Module to analyze Registry Hives☆16Feb 18, 2022Updated 4 years ago