nesfit / NetfoxDetective

Related projects: ⓘ

• polylogyx / PolyMon
  ☆15Updated this week
• ion-storm / emotet-malware-killer
  ☆38Updated 4 years ago
• swisscom / PowerSponse
  PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.
  ☆38Updated 2 years ago
• Invoke-IR / PowerForensicsPortable
  ☆29Updated 4 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 7 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆51Updated 3 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• DearBytes / Opensource-Endpoint-Monitoring
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆33Updated 5 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 9 years ago
• piesecurity / WindowsEventsToCSVTimeline
  Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
  ☆33Updated 5 years ago
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆15Updated last year
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆31Updated 4 years ago
• WatchPointData / Ransomware-Simulator
  ☆16Updated this week
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆41Updated last year
• grayfold3d / POSH-Triage
  Tools for parsing Forensic images
  ☆41Updated 5 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 4 years ago
• HASecuritySolutions / Update-VMs
  Snapshot, patch, health-check, and potentially roll-back Windows VMs
  ☆31Updated 6 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆12Updated 6 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 3 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆50Updated last year
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• counteractive / incident-response-collector
  ☆14Updated 4 years ago
• op7ic / amphunt
  Cisco AMP threat hunting scripts
  ☆14Updated 2 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆30Updated 7 months ago
• johnfranolich / Hunting-Scripts
  A collection of hunting and blue team scripts. Mostly others, some my own.
  ☆37Updated last year
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 5 years ago
• evild3ad / isodump
  isodump - ISO dump utility
  ☆38Updated 5 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 5 years ago
• weslambert / securityonion-strelka
  ☆12Updated 4 years ago