Alternatives and similar repositories for 4n6pi

Users that are interested in 4n6pi are comparing it to the libraries listed below

• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated last week
• WesSec / VelociDeploy-o-Matic
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Updated last year
• NextronSystems / velociraptor-artifacts-thor
  Thor Artifacts for Velociraptor
  ☆16Updated last year
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆33Updated last week
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated last month
• strozfriedberg / qelp
  Quick ESXi Log Parser
  ☆21Updated 5 months ago
• 00010111 / gMetaDataParse
  ☆21Updated 3 months ago
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated this week
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 4 years ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆23Updated 9 months ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 2 years ago
• ruppde / yara_rules
  Yara rules
  ☆21Updated 2 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• infosecn1nja / TTPMapper
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆27Updated this week
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• openrelik / openrelik-deploy
  Tools and scripts to deploy and manage OpenRelik instances
  ☆14Updated last week
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆42Updated this week
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆14Updated last year
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• nasbench / Awesome-Detection-Engineering
  Resources and Discussions About Detection Engineering
  ☆12Updated 2 years ago
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated last year
• mvelazc0 / Talks-Presentations
  Resource links (video, slides & code) for my conference talks | presentations | workshops
  ☆14Updated 5 months ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆33Updated last month
• Lyc4on / EvtXHunt
  EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.
  ☆16Updated 3 years ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆25Updated 3 months ago