jipegit / FECT
Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
☆42Updated 4 years ago
Alternatives and similar repositories for FECT:
Users that are interested in FECT are comparing it to the libraries listed below
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 6 months ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- Detect malicious domain, Blablablablabla☆26Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- Tool for analysts to perform simultaneous lookups (IP, Domain, URL, MD5) against multiple data sources☆29Updated 8 years ago
- ☆16Updated 10 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Network Forensics Workshop Files☆17Updated 10 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- This repository is a curated list of pro bono incident response entities.☆20Updated last year
- Incident Response Scripts☆30Updated 5 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- Oracle Attacks Tool☆13Updated 8 years ago
- DEPRECATED! LOOK AT CREDNINJA! A tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a …☆15Updated 8 years ago
- Public Maltego Transforms☆24Updated 7 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago