Alternatives and similar repositories for forensics:

Users that are interested in forensics are comparing it to the libraries listed below

• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 4 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• MITRECND / crits_services
  CRITs Services Collection
  ☆15Updated 7 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated last year
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 4 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆26Updated 3 years ago
• paulpc / quickIR
  Auxiliary scripts for Incident Response with ELK
  ☆11Updated 9 years ago
• pwnwiki / dfirwiki
  Digital Forensics and Incident Response Wiki
  ☆40Updated 10 years ago
• threatminer / Maltego
  ☆10Updated 8 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 7 years ago
• gburkle / Stalker
  Threat Intel and Incident Reponse
  ☆10Updated 6 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 7 years ago
• obsidianforensics / scripts
  Small scripts and POCs related to digital forensics
  ☆17Updated 2 years ago
• MISP / misp-graph
  A tool to convert MISP XML files (events and attributes) into graphs
  ☆20Updated 7 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 7 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• mdegrazia / Google-Analytic-Cookie-Cruncher
  Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values
  ☆23Updated 8 years ago
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆18Updated 10 years ago
• appliedsec / forensicscanner
  Forensic Scanner
  ☆40Updated 12 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆28Updated 7 years ago
• davidpany / CDPO
  CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.
  ☆15Updated 7 years ago