pinesol93 / MemoryForensicSamples
Links to various memory samples
☆24Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for MemoryForensicSamples
- ☆63Updated last year
- Some important DFIR Resources☆82Updated last year
- ☆57Updated 3 weeks ago
- Windows Forensics Environment Builder☆112Updated 2 weeks ago
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆71Updated 2 years ago
- Harness the power of Splunk for your investigations☆77Updated this week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆67Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆97Updated last year
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Windows Malware Investigation Scripts & Docs☆75Updated 2 weeks ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆270Updated 2 months ago
- Cyber Underground General Intelligence Requirements☆89Updated 9 months ago
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆63Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆76Updated last week
- Repository of public reference frameworks for the DFIR community.☆109Updated last year
- Jupyter Notebooks for the Blue Team☆141Updated last year
- A curated list of KAPE-related resources☆157Updated 6 months ago
- SIEM Cheat Sheet☆72Updated last year
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆186Updated 4 months ago
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆194Updated 6 months ago
- Incident Response documents and tooling☆63Updated last year
- Script to automate Linux live evidence collection☆27Updated 2 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆148Updated 6 months ago
- Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.☆45Updated 2 years ago
- Forensic Artifact Collection Tool Matrix☆75Updated 2 weeks ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆49Updated last year
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆94Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆50Updated 2 years ago
- CarbonBlack EDR detection rules and response actions☆71Updated 2 months ago