idiom/IRScripts external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

idiom/IRScripts

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/idiom/IRScripts)

Close

idiom / IRScriptsView on GitHubMore

• External links
• Readme badge

Incident Response Scripts

☆30Mar 1, 2020Updated 6 years ago

Alternatives and similar repositories for IRScripts

Users that are interested in IRScripts are comparing it to the libraries listed below

• idiom / pftriage

  View on GitHub
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Jul 2, 2020Updated 5 years ago
• alexander-hanel / ida_yara

  View on GitHub
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Sep 4, 2018Updated 7 years ago
• 0xd0cf11e / ghidra

  View on GitHub
  Anything related to Ghidra
  ☆12Apr 22, 2019Updated 6 years ago
• ministryofpromise / tlp

  View on GitHub
  threat language parser
  ☆59Apr 20, 2015Updated 10 years ago
• silascutler / IDA_AutoAnalysis

  View on GitHub
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Mar 9, 2018Updated 8 years ago
• mak / libzpy

  View on GitHub
  library to decode/parse zeus-like configuration files
  ☆30Mar 19, 2018Updated 8 years ago
• hiddenillusion / IR

  View on GitHub
  Some dfir stuff
  ☆31Jan 12, 2022Updated 4 years ago
• kbandla / tools

  View on GitHub
  random python stuff
  ☆26Jan 7, 2016Updated 10 years ago
• nihilus / idascope

  View on GitHub
  ☆28Aug 31, 2014Updated 11 years ago
• caschnee / misp-use-cases

  View on GitHub
  ☆14May 30, 2018Updated 7 years ago
• v1ado / HIPS_LIPS

  View on GitHub
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Jan 7, 2026Updated 2 months ago
• techbliss / Yara_Mailware_Quick_menu_scanner

  View on GitHub
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Mar 26, 2016Updated 9 years ago
• sans-blue-team / course_indices

  View on GitHub
  Indices for courses in SANS' Network Security Operations curriculum
  ☆17Feb 5, 2016Updated 10 years ago
• mpars0ns / scansio-sonar-es

  View on GitHub
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33May 14, 2016Updated 9 years ago
• randomaccess3 / regripper_gui

  View on GitHub
  GUI for regripper
  ☆11Mar 19, 2019Updated 7 years ago
• diwakergupta / asciinema2gif

  View on GitHub
  Convert asciinema JSON files to GIF for embedding in Github, Medium, email, Slack and more!
  ☆10Sep 24, 2020Updated 5 years ago
• Hestat / calamity

  View on GitHub
  A script to assist in processing forensic RAM captures for malware triage
  ☆26Feb 4, 2021Updated 5 years ago
• opendns / og-miner

  View on GitHub
  OpenDNS Graph Miner
  ☆45Apr 28, 2017Updated 8 years ago
• DissectMalware / MalwareCMDMonitor

  View on GitHub
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Sep 18, 2018Updated 7 years ago
• pwnlandia / hpfeeds

  View on GitHub
  Honeynet Project generic authenticated datafeed protocol
  ☆19Jun 12, 2019Updated 6 years ago
• CIRCL / email-abuse

  View on GitHub
  Email Abuse - A Versatile Software for Email review, analysis and reporting
  ☆21Jul 17, 2015Updated 10 years ago
• xme / mime2vt

  View on GitHub
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Mar 11, 2016Updated 10 years ago
• SekoiaLab / Fastir_Collector

  View on GitHub
  ☆519Jan 26, 2021Updated 5 years ago
• IllusiveNetworks-Labs / GetConsoleHistoryAndOutput

  View on GitHub
  An Incident Response tool to extract console command history and screen output buffer
  ☆42Jan 11, 2018Updated 8 years ago
• binarlyhq / binarly-sdk

  View on GitHub
  Binarly SDK v1
  ☆14Dec 18, 2016Updated 9 years ago
• naxonez / YaraRules

  View on GitHub
  Yaras Random
  ☆24Feb 21, 2019Updated 7 years ago
• mynameisv / Ayaabu

  View on GitHub
  Ayaabu is a funny trick that fake the installation of many Antivirus
  ☆12Jul 6, 2016Updated 9 years ago
• R3MRUM / loki-parse

  View on GitHub
  A python script that can detect and parse loki-bot (malware) related network traffic. This script can be helpful to DFIR analysts and sec…
  ☆13Dec 31, 2021Updated 4 years ago
• pun1sh3r / iocminion

  View on GitHub
  Just another tool to extract Indicator of compromise (ioc) from files
  ☆29Oct 1, 2015Updated 10 years ago
• Xen0ph0n / MIDAS

  View on GitHub
  Metadata Inspection Database Alerting System
  ☆42Jul 26, 2013Updated 12 years ago
• Sjord / encoded-js-trojan

  View on GitHub
  ☆10Feb 18, 2016Updated 10 years ago
• ea / xfg_analyzer

  View on GitHub
  A Binary Ninja plugin that uses bruteforced XFG hashes to recover precise function prototypes
  ☆16Feb 7, 2024Updated 2 years ago
• nbs-system / mowr

  View on GitHub
  More Obvious Webmalware Repository
  ☆16Dec 16, 2016Updated 9 years ago
• brad-anton / extension_finder

  View on GitHub
  Python and PowerShell utilities for finding installed browser extensions, plug-ins and add-ons
  ☆25Jun 14, 2016Updated 9 years ago
• rmkml / etplc

  View on GitHub
  ☆17Mar 22, 2018Updated 7 years ago
• adamwallred / nvmtrace

  View on GitHub
  Proof-of-concept automated baremetal malware analysis framework.
  ☆14Sep 24, 2015Updated 10 years ago
• kevthehermit / YaraRules

  View on GitHub
  My Yara Rules Collection
  ☆52Feb 7, 2016Updated 10 years ago
• hasherezade / bunitu_tests

  View on GitHub
  Scripts for communication with Bunitu Trojan C&Cs
  ☆19Oct 29, 2015Updated 10 years ago
• Yara-Rules / yara-tester-bot

  View on GitHub
  Telegram Bot that performs checks of the yararules.com ruleset
  ☆13May 13, 2016Updated 9 years ago