Alternatives and similar repositories for forensics

Users that are interested in forensics are comparing it to the libraries listed below

• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated 2 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated 2 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• Invoke-IR / PowerForensicsPortable
  ☆32Updated 7 months ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• anthonykasza / opendns_transform
  Maltego transform for OpenDNS Investigate API
  ☆13Updated 10 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆27Updated 3 years ago
• obsidianforensics / scripts
  Small scripts and POCs related to digital forensics
  ☆17Updated 2 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 8 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 5 years ago
• markedoe / cuckoo-sandbox
  cuckoo sandbox patches and scripts
  ☆15Updated 11 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 8 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated last week
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago
• sroberts / sapho
  A homebrewed cyber threat intelligence solution
  ☆20Updated 12 years ago
• TakahiroHaruyama / onigiri
  onigiri - remote malware triage script
  ☆24Updated 9 years ago
• w8mej / IRKnowledge
  A curated list of tools for incident response
  ☆29Updated last year
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 6 years ago
• botherder / vxcage
  REST API based malware repository (abandoned)
  ☆108Updated 10 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆19Updated 8 years ago
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆19Updated 11 years ago