nccgroup / MetadataPlus

Related projects: ⓘ

• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆45Updated 3 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 3 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆68Updated 6 months ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆61Updated 7 months ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆51Updated 2 years ago
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆50Updated last week
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆67Updated last year
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆28Updated 2 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆108Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆36Updated 8 months ago
• elementalsouls / DumpLSASS
  ☆34Updated 6 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆22Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated 10 months ago
• ezaspy / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆29Updated 2 months ago
• HuskyHacks / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆38Updated 2 years ago
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆59Updated 2 months ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆49Updated 3 months ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆48Updated 5 months ago
• northloopforensics / Bitlocker_Key_Finder
  Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.
  ☆40Updated last week
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆48Updated last year
• intelshare / Forums-For-RFI
  Data breaches, Leaks, Malwares Forums List <Please Use Vpn/TOR don't click on Link directly bad OPSEC>
  ☆40Updated this week
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆36Updated this week
• CYBERCOM-Malware-Alert / IOCs
  ☆19Updated 2 years ago
• nyxgeek / track_the_planet
  DEFCON 31
  ☆57Updated 2 months ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆34Updated last year
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆48Updated 2 months ago
• 0xHasanM / regexplore
  Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite
  ☆17Updated last year
• NextronSystems / nextron-helper-scripts
  Public tools, scripts or code snippets that can help when working with our products
  ☆46Updated last week
• gajos112 / Digital-Forensics
  ☆35Updated 3 years ago