Alternatives and similar repositories for IR_Tool:

Users that are interested in IR_Tool are comparing it to the libraries listed below

• yampelo / samparser
  A python script used to parse the SAM registry hive.
  ☆72Updated 7 years ago
• maltelligence / maltelligence
  a Malware/Threat Analyst Desktop
  ☆89Updated 9 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 4 years ago
• hadojae / DATA
  Credential Phish Analysis and Automation
  ☆96Updated 6 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆83Updated 9 years ago
• sroberts / malwarehouse
  A warehouse for your malware
  ☆134Updated 11 years ago
• nheijmans / malzoo
  Mass static malware analysis tool
  ☆95Updated 3 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 3 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• conix-security / BTG
  BTG's purpose is to make fast and efficient search on IOC
  ☆70Updated 6 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆48Updated 7 years ago
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆81Updated 9 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 5 years ago
• michael-yip / ThreatTracker
  ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…
  ☆68Updated 10 years ago
• wmetcalf / buildcuckoo-trusty
  A dumb set of scripts for building a cuckoo rig
  ☆61Updated 8 years ago
• AnttiKurittu / kirjuri
  Kirjuri is a web application for managing cases and physical forensic evidence items.
  ☆106Updated 3 years ago
• hiddenillusion / IR
  Some dfir stuff
  ☆31Updated 3 years ago
• boolaz / BooLet
  Log Examination Tool
  ☆26Updated 8 years ago
• cylance / NMAP-Cluster
  Clustering NMAP XML results to help make sense of large scan results.
  ☆33Updated 2 years ago
• mandiant / AuditParser
  AuditParser
  ☆59Updated 11 years ago
• PaulSec / API-malwr.com
  (Unofficial) Python API for https://malwr.com/
  ☆62Updated 8 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆62Updated 10 years ago
• brianwarehime / otx_transforms
  Transforms for the AlienVault OTX service
  ☆39Updated 8 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆82Updated 7 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• pmelson / viper-scripts
  Various Modules & Scripts for use with Viper Framework
  ☆27Updated 5 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆108Updated 7 years ago
• Tripwire / TARDIS
  Threat Analysis, Reconnaissance, and Data Intelligence System
  ☆125Updated 9 years ago
• dnlongen / RegLister
  Recurse through a registry, identifying values with large data -- a registry malware hunter
  ☆44Updated 8 years ago
• r3comp1le / VT-Hunter
  Manage VT Alerts
  ☆62Updated 8 years ago