jstrosch / FLARE-VM-configsLinks
These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help streamline the installation.
☆14Updated last year
Alternatives and similar repositories for FLARE-VM-configs
Users that are interested in FLARE-VM-configs are comparing it to the libraries listed below
Sorting:
- Contains compiled binaries of Volatility☆33Updated 2 weeks ago
- Quick ESXi Log Parser☆21Updated 5 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆69Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 3 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆43Updated 2 months ago
- ☆24Updated 3 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- Tools and scripts to deploy and manage OpenRelik instances☆13Updated this week
- ☆14Updated last year
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 5 months ago
- Detection rule validation☆41Updated last year
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- information about ransomware groups (Ransomware Analysis Notes)☆37Updated last year
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- ☆37Updated last year
- a tiny program to consume from ETW providers for research☆48Updated 5 months ago
- ☆22Updated 4 months ago
- ☆80Updated 6 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆51Updated 2 months ago
- ☆63Updated last week
- Capture. Detonate. Collect☆14Updated 8 months ago
- macOS Artifacts☆29Updated 3 months ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆11Updated last year
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Hive v5 file decryption algorithm☆34Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.☆37Updated 4 months ago