reed1713 / ELATLinks
Event Log Analysis Tools
☆30Updated 9 years ago
Alternatives and similar repositories for ELAT
Users that are interested in ELAT are comparing it to the libraries listed below
Sorting:
- A GC link parser for both linkfiles and jumplists.☆18Updated 8 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 7 years ago
- Some dfir stuff☆31Updated 3 years ago
- Various DFIR Tools☆26Updated 7 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 4 years ago
- Automated install scripts for Cuckoo sandbox☆38Updated 7 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- A Windows Event Processing Utility☆47Updated 7 years ago
- Process HTTP Pcaps With YARA☆106Updated 12 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 8 years ago
- Registry Miner☆14Updated 7 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 8 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 7 years ago
- Yara rules for detecting malware☆24Updated last month
- Command-line Interface for Binar.ly☆38Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated 2 years ago
- ☆82Updated 9 years ago
- onigiri - remote malware triage script☆24Updated 9 years ago
- ☆37Updated 8 years ago
- Collection of scripts for different malware analysis tasks☆76Updated 6 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Updated 6 years ago
- Some IR notes☆73Updated 9 years ago
- Parses IE's Automatic Crash Recovery Files☆16Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated 9 months ago
- BSidesLV 2015 Exploit Kit Analysis Workshop Files☆27Updated 10 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- Fast incident overview☆40Updated 8 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆87Updated 8 years ago
- Tool to parse SRU database☆25Updated 7 years ago