nesfit / NetfoxDetectiveLinks
Network Forensic Extendable Analysis Tool
☆39Updated 3 years ago
Alternatives and similar repositories for NetfoxDetective
Users that are interested in NetfoxDetective are comparing it to the libraries listed below
Sorting:
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Fast incident overview☆40Updated 8 years ago
- ☆39Updated 5 years ago
- Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.☆34Updated 6 years ago
- CyberChef update scripts in PowerShell & Bash☆16Updated last year
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- Site for IWS book content☆17Updated 6 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- OSSEM Modular☆27Updated 5 years ago
- Validates yara rules and tries to repair the broken ones.☆40Updated 5 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆42Updated 4 years ago
- Windows 10 Live Information viewer☆36Updated 3 years ago
- THOR MITRE ATT&CK Framework Coverage☆25Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 6 years ago
- Incident Response Network Tools☆24Updated 4 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 3 years ago
- Indicator of Compromise Scanner for CVE-2019-19781☆94Updated 5 years ago
- ☆46Updated 2 years ago
- ☆13Updated 5 years ago
- Tools for parsing Forensic images☆41Updated 6 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Updated 6 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆13Updated last year
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated 2 weeks ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆23Updated 8 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- Git for me to put all my forensics stuff☆22Updated 2 weeks ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 6 years ago