philhagen/for572-scripts external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

philhagen/for572-scripts

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/philhagen/for572-scripts)

Close

philhagen / for572-scriptsView on GitHubMore

• External links
• Readme badge

A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis

☆29Aug 6, 2025Updated 10 months ago

Alternatives and similar repositories for for572-scripts

Users that are interested in for572-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• philhagen / timeshift

  View on GitHub
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆22May 19, 2022Updated 4 years ago
• Velocidex / velociraptor-sigma-rules

  View on GitHub
  A Compiler from Sigma rules to VQL
  ☆19May 18, 2026Updated 3 weeks ago
• ajackal / ir_scripts

  View on GitHub
  incident response scripts
  ☆18Mar 4, 2019Updated 7 years ago
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• SecurityAura / Aura-Research

  View on GitHub
  Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.
  ☆22Jan 5, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• teamdfir / concordance

  View on GitHub
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆69Aug 7, 2020Updated 5 years ago
• strozfriedberg / notatin

  View on GitHub
  A Windows registry file parser written in Rust
  ☆40Oct 30, 2025Updated 7 months ago
• rj-chap / NFWorkshop

  View on GitHub
  Network Forensics Workshop Files
  ☆17Apr 21, 2015Updated 11 years ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 4 years ago
• tahmed11 / strutsy

  View on GitHub
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Sep 1, 2018Updated 7 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• strozfriedberg / llama

  View on GitHub
  llama is lightgrep's amazing media analyzer
  ☆16May 26, 2026Updated 2 weeks ago
• jonathanristo / CTEMMM

  View on GitHub
  Continuous Threat Exposure Management Maturity Model (CTEMMM)
  ☆33Feb 6, 2026Updated 4 months ago
• Infocyte / PowershellTools

  View on GitHub
  Useful Powershell Tools for operating or testing Infocyte HUNT
  ☆19Jan 10, 2025Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• McL0vinn / Windows-Forensic-Examination-and-Threat-Hunting

  View on GitHub
  Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…
  ☆15May 30, 2026Updated 2 weeks ago
• jstnkndy / scripts

  View on GitHub
  Scripts that I've written that others may find useful
  ☆14Aug 17, 2022Updated 3 years ago
• SMAPPER / NSM

  View on GitHub
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆17Sep 30, 2016Updated 9 years ago
• StupidBird-Code / Malware_Analysize-Tools

  View on GitHub
  Here are some tools I developed to help analyze malware
  ☆11Nov 8, 2023Updated 2 years ago
• EricZimmerman / Get-ZimmermanTools

  View on GitHub
  Get all my software
  ☆195May 2, 2026Updated last month
• The-DFIR-Report / Suricata-Rules

  View on GitHub
  ☆11Jun 12, 2023Updated 3 years ago
• 00010111 / smbtimeline

  View on GitHub
  ☆35Oct 20, 2024Updated last year
• AtomicGaryBusey / AzureForensics

  View on GitHub
  ☆33Oct 25, 2021Updated 4 years ago
• ydkhatri / spotlight_queries

  View on GitHub
  Queries for parsed spotlight database in sqlite
  ☆13Dec 29, 2020Updated 5 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• volatilityfoundation / community3

  View on GitHub
  Volatility3 plugins developed and maintained by the community
  ☆67Mar 19, 2023Updated 3 years ago
• EZToolsManuals / EZToolsManuals

  View on GitHub
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆95Aug 12, 2025Updated 10 months ago
• philhagen / sof-elk

  View on GitHub
  Configuration files for the SOF-ELK VM
  ☆1,737Jun 7, 2026Updated last week
• kolide / docker-osquery

  View on GitHub
  Dockerfiles for containerized osquery
  ☆14May 23, 2017Updated 9 years ago
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• ibm-xforce / xfe-node

  View on GitHub
  Node.js SDK for IBM X-Force Exchange
  ☆15Aug 20, 2018Updated 7 years ago
• joswr1ght / pcaphistogram

  View on GitHub
  Generate a histogram of TCP and UDP payload bytes from a pcap file
  ☆25Aug 1, 2022Updated 3 years ago
• TheManyHatsClub-CTF / TheManyHatsClubCTF

  View on GitHub
  Challenges for the TheManyHatsClub CTF
  ☆11May 1, 2023Updated 3 years ago
• rootsecdev / Presentations

  View on GitHub
  Presentations from Conferences
  ☆31Sep 14, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• MISP / best-practices-in-threat-intelligence

  View on GitHub
  Best practices in threat intelligence
  ☆50Nov 6, 2022Updated 3 years ago
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• HillsyCyberSec / CheatSheet

  View on GitHub
  ☆10Aug 9, 2024Updated last year
• AbdulRhmanAlfaifi / SDSParser-rs

  View on GitHub
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Jan 9, 2023Updated 3 years ago
• strozfriedberg / sidr

  View on GitHub
  Search Index Database Reporter
  ☆136Oct 28, 2025Updated 7 months ago
• deletehead / SOC-200-OSDA

  View on GitHub
  Resources and notes for Offensive Security's SOC-200 course and OffSec Defense Analyst (OSDA) exam
  ☆17May 19, 2023Updated 3 years ago
• RandomRhythm / mal2csv

  View on GitHub
  Malformed Access Log to CSV - Convert Web Server Access Logs to CSV
  ☆18Sep 3, 2024Updated last year