huntandhackett/ir-automation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/huntandhackett/ir-automation)

huntandhackett / ir-automation

Incident Response automation scripts

☆16

Alternatives and similar repositories for ir-automation

Users that are interested in ir-automation are comparing it to the libraries listed below

Sorting:

huntandhackett / AfdSocketViewer
View on GitHub
A console tool for inspecting Windows Ancillary Function Driver sockets
☆21May 15, 2025Updated 9 months ago
huntandhackett / sysmon-indepth
View on GitHub
Understanding the operation and limitations of Sysmon's events
☆23Sep 15, 2022Updated 3 years ago
huntandhackett / PassiveAggression
View on GitHub
Source code and examples for PassiveAggression
☆64Jun 6, 2024Updated last year
CERT-EDF / generaptor
View on GitHub
CLI generator for Velociraptor offline collector
☆16Oct 10, 2025Updated 4 months ago
huntandhackett / Antignis
View on GitHub
Source code and examples for Antignis
☆44Oct 21, 2022Updated 3 years ago
mandiant / pulsesecure_exploitation_countermeasures
View on GitHub
☆23Jun 1, 2023Updated 2 years ago
DCSO / flor
View on GitHub
A Python implementation of our efficient Bloom filter library.
☆29Feb 27, 2020Updated 6 years ago
cudeso / dfir-iris-misp-timesketch
View on GitHub
Scripts to integrate DFIR-IRIS, MISP and TimeSketch
☆35Feb 2, 2022Updated 4 years ago
huntandhackett / concealed_code_execution
View on GitHub
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
☆223Aug 12, 2022Updated 3 years ago
piotrcki / airgap-os
View on GitHub
Offline amnesic live Linux distribution
☆14Mar 8, 2025Updated last year
adulau / the-art-of-pivoting
View on GitHub
The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World
☆158Dec 31, 2025Updated 2 months ago
eMpTyll / VANET
View on GitHub
VANET using OMNET++, SUMO, Open Street Map, Veins, Inet
☆11May 14, 2024Updated last year
zbalkan / rulevis
View on GitHub
RuleVis is a powerful analysis tool that transforms your Wazuh ruleset into a dynamic, interactive force-directed graph. It helps you vis…
☆24Nov 12, 2025Updated 3 months ago
adulau / hashlookup-server
View on GitHub
Fast lookup server for NSRL and other hash database used in digital forensic
☆48Jan 26, 2026Updated last month
TelaMechanica / MATC
View on GitHub
Modular Antenna Tracker Caddy
☆11Nov 14, 2023Updated 2 years ago
iAnonymous3000 / google-hardening-guide
View on GitHub
Enhance your Google account security with this comprehensive guide. It covers strong passwords, two-factor authentication, phishing preve…
☆11Nov 21, 2024Updated last year
reverseame / APOTHEOSIS
View on GitHub
A specialized implementation of the Hierarchical Navigable Small World (HNSW) data structure adapted for efficient nearest neighbor looku…
☆10Updated this week
robotrapta / garden-watcher
View on GitHub
Artificial Dog to bark at deer and other garden pests using Raspberry Pi and Groundlight
☆12Jun 19, 2024Updated last year
alswl / yed-palettes
View on GitHub
☆10May 8, 2018Updated 7 years ago
aws-samples / drs-malware-scan
View on GitHub
Perform file-based malware scan on your on-prem servers with AWS
☆14Oct 31, 2023Updated 2 years ago
orchestron-orchestrator / orchestron
View on GitHub
A friendly orchestrator platform from the future
☆17Feb 27, 2026Updated last week
fox-it / citrix-netscaler-triage
View on GitHub
Dissect triage scripts for Citrix NetScaler devices
☆69Nov 17, 2025Updated 3 months ago
ApexPredator-InfoSec / DFIR-Malware-Analysis
View on GitHub
Tools for Incident Response and Malware Analysis
☆11Feb 9, 2025Updated last year
bridgeythegeek / ndispktscan
View on GitHub
NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.
☆12Oct 23, 2015Updated 10 years ago
tsunglung / UberEats
View on GitHub
Uber Eats for Home Assistant
☆11Jan 20, 2026Updated last month
dirk-weimar / let-me-confluence-that-for-you
View on GitHub
A GPT-based chatbot who knows the content of your Confluence wiki.
☆14Apr 22, 2025Updated 10 months ago
hardlyadequate / analyst-playbook
View on GitHub
☆11Mar 21, 2020Updated 5 years ago
WqyJh / qwingraph_qt5
View on GitHub
An patch porting qwingraph (wingraph written in qt4) to qt5.
☆10Aug 21, 2019Updated 6 years ago
paulpc / quickIR
View on GitHub
Auxiliary scripts for Incident Response with ELK
☆11Oct 7, 2015Updated 10 years ago
liansecurityOS / android-malware-detection
View on GitHub
This is a opensource repo about how to detect android malware using Random Forest Classifier and explain it use linearsvc.
☆12Feb 7, 2024Updated 2 years ago
cremuzzi / docker-opensc
View on GitHub
Dockerized OpenSC with pkcs15-init, pkcs11-tool, pkcs15-tool and more. It also comes with libp11 for openssl
☆10Jul 31, 2021Updated 4 years ago
fabriziosalmi / csv-anonymizer
View on GitHub
CSV fuzzer/anonymizer
☆10Feb 14, 2026Updated 3 weeks ago
YossiSassi / AD-Replication-Metadata
View on GitHub
Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…
☆16Feb 25, 2025Updated last year
tsale / TA_tooling
View on GitHub
☆10Dec 24, 2022Updated 3 years ago
corelight / conn-burst
View on GitHub
A Bro package to identify connections that are bursting (lots of data and transferring quickly).
☆13Oct 15, 2020Updated 5 years ago
StrangerealIntel / DeltaFlare
View on GitHub
☆12Jun 29, 2021Updated 4 years ago
mattnotmax / hash_hunter
View on GitHub
Command-line tool to search for malware samples in various repositories
☆12Mar 3, 2022Updated 4 years ago
6mile / DEFCON33-Workshop
View on GitHub
DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)
☆15Aug 8, 2025Updated 7 months ago
xameco-be / pfaudit
View on GitHub
pfSense Configuration Auditing Script
☆13Dec 14, 2020Updated 5 years ago