loneicewolf / DFIR-ResourcesLinks
Resources for DFIR. And more.
☆11Updated last year
Alternatives and similar repositories for DFIR-Resources
Users that are interested in DFIR-Resources are comparing it to the libraries listed below
Sorting:
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 4 years ago
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing☆42Updated this week
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Updated 2 years ago
- A repository for tracking events related to the MOVEit Transfer Cl0p Campaign☆71Updated 2 years ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆55Updated 3 years ago
- A MITRE ATT&CK Lookup Tool☆46Updated last year
- ☆67Updated 3 months ago
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆23Updated 4 months ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆106Updated last year
- This Repository gives the best and possible strategies against hunting the ransomware☆26Updated 3 years ago
- Library of threat hunts to get any user started!☆46Updated 5 years ago
- Incident Response with Threat Intelligence, published by Packt☆56Updated last year
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆14Updated 3 years ago
- ☆49Updated 2 weeks ago
- DNS Dashboard for hunting and identifying beaconing☆16Updated 5 years ago
- Detection Engineering with YARA☆86Updated last year
- Contains compiled binaries of Volatility☆37Updated 7 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Updated last month
- Thor Artifacts for Velociraptor☆18Updated 3 weeks ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 3 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- ☆63Updated 3 years ago
- ☆67Updated last month
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆65Updated 2 years ago
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated 2 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated 2 years ago
- Jupyter Notebooks for the Blue Team☆39Updated 11 months ago