pinesol93 / MemoryForensicSamples

Related projects ⓘ

Alternatives and complementary repositories for MemoryForensicSamples

• dfircheatsheet / dfircheatsheet.github.io
  ☆63Updated last year
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆82Updated last year
• dfir-scripts / siftgrab
  ☆57Updated 3 weeks ago
• digitalsleuth / WIN-FOR
  Windows Forensics Environment Builder
  ☆112Updated 2 weeks ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆71Updated 2 years ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆77Updated this week
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆116Updated 11 months ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆67Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆97Updated last year
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆75Updated 2 weeks ago
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆270Updated 2 months ago
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆89Updated 9 months ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆63Updated last year
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆76Updated last week
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆109Updated last year
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆141Updated last year
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆157Updated 6 months ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆72Updated last year
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆186Updated 4 months ago
• Digital-Forensics-Discord-Server / TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts
  The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…
  ☆194Updated 6 months ago
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆63Updated last year
• Dead-Simple-Scripts / AutoLLR
  Script to automate Linux live evidence collection
  ☆27Updated 2 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆148Updated 6 months ago
• solomonsonya / Xavier_MemoryAnalysis_Framework
  Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
  ☆45Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆75Updated 2 weeks ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆49Updated last year
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆94Updated last year
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆50Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 2 months ago