rangercha / tshark_extractor
python wrapper to use tshark for file extraction from the command line.
☆27Updated 6 years ago
Alternatives and similar repositories for tshark_extractor:
Users that are interested in tshark_extractor are comparing it to the libraries listed below
- Collection of scripts and tools that I created to aid in my testing.☆14Updated 2 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆28Updated 8 years ago
- Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment☆14Updated 7 months ago
- ☆22Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.☆18Updated 2 years ago
- Audit Powershell and search from known keywords in history #Blueteam☆25Updated 4 years ago
- isodump - ISO dump utility☆40Updated 5 years ago
- unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Andro…☆32Updated last month
- THOR MITRE ATT&CK Framework Coverage☆24Updated 4 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…☆45Updated 2 years ago
- A quick reference guide for python script development in DFIR☆16Updated 11 months ago
- LetMeOutOfYour.net Resources☆20Updated 4 years ago
- Resource links (video, slides & code) for my conference talks | presentations | workshops☆13Updated last month
- Privilege escalation challenges created for Harmonie-Technologie exhibition stand @ NDH16 (Paris)☆14Updated 5 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- Ansible scripts to build an attack box☆22Updated 6 years ago
- ☆29Updated 6 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 3 years ago
- This is a Ansible script for building a ready to go Cuckoo Sandbox server.☆25Updated 6 years ago
- ☆41Updated 10 months ago
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Updated 5 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 5 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Updated 3 years ago
- Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA☆22Updated 5 years ago
- OG Atomic Red Team☆29Updated 6 years ago