Alternatives and similar repositories for MemoryForensicSamples:

Users that are interested in MemoryForensicSamples are comparing it to the libraries listed below

• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 2 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated last week
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated last year
• digitalsleuth / WIN-FOR
  Windows Forensics Environment Builder
  ☆131Updated 2 months ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆95Updated this week
• dfir-scripts / siftgrab
  ☆68Updated 3 months ago
• Digital-Forensics-Discord-Server / ArtifactParsers
  A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts
  ☆59Updated 4 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• Digital-Forensics-Discord-Server / TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts
  The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…
  ☆207Updated last month
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆95Updated last year
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆68Updated last year
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆279Updated 7 months ago
• cocopollo / HunterM
  macOS Artifacts
  ☆28Updated last month
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆52Updated last year
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆69Updated last year
• nisargsuthar / Veritas
  A hex viewer for the sleuths!
  ☆17Updated last year
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆47Updated last year
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆50Updated 5 years ago
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆85Updated 3 months ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆108Updated last year
• AndrewRathbun / VanillaWindowsReference
  A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …
  ☆155Updated 4 months ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated last month
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆115Updated last year
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆261Updated last year
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆164Updated 2 weeks ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• solomonsonya / Xavier_MemoryAnalysis_Framework
  Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
  ☆45Updated 2 years ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆81Updated 4 months ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆93Updated 4 years ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year