Alternatives and similar repositories for forensics:

Users that are interested in forensics are comparing it to the libraries listed below

• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated last year
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆63Updated 6 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆26Updated 3 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• davebremer / Export-SysmonLogs
  ☆11Updated 6 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 8 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 7 years ago
• davidhowell-tx / Invoke-LiveResponse
  PowerShell based Live Response tool
  ☆12Updated 9 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆18Updated 10 years ago
• anthonykasza / opendns_transform
  Maltego transform for OpenDNS Investigate API
  ☆13Updated 10 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆40Updated 6 years ago
• Invoke-IR / PowerForensicsPortable
  ☆31Updated 3 months ago
• obsidianforensics / scripts
  Small scripts and POCs related to digital forensics
  ☆17Updated 2 years ago
• nrvana / macOS-triage
  macOS triage is a python script to collect various macOS logs, artifacts, and other data.
  ☆26Updated 3 years ago
• botherder / vxcage
  REST API based malware repository (abandoned)
  ☆108Updated 9 years ago
• sroberts / sapho
  A homebrewed cyber threat intelligence solution
  ☆20Updated 12 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• davidpany / rr_parseomater
  RegRipper wrapper for simplified bulk parsing or registry hives
  ☆9Updated 6 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 4 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated 2 weeks ago