jipegit / FECTLinks
Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
☆42Updated 5 years ago
Alternatives and similar repositories for FECT
Users that are interested in FECT are comparing it to the libraries listed below
Sorting:
- Fix acquired .evt - Windows Event Log files (Forensics)☆19Updated 9 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆48Updated 8 years ago
- Tool for analysts to perform simultaneous lookups (IP, Domain, URL, MD5) against multiple data sources☆29Updated 8 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- Yara intergrated into BurpSuite☆48Updated 9 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆68Updated 10 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 10 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- Incident Response Scripts☆30Updated 5 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- mindmap created for tools can be used during analysis/investigation☆27Updated 8 years ago
- A GC link parser for both linkfiles and jumplists.☆18Updated 8 years ago
- Cli interface to threatcrowd.org☆19Updated 8 years ago
- Detect malicious domain, Blablablablabla☆26Updated 8 years ago
- ☆16Updated 10 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago
- Maltego Transform to put entities into MISP events☆28Updated 4 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- Carve Windows Prefetch files from arbitrary binary data☆16Updated 8 years ago
- ☆22Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 10 years ago