rj-chap / CFWorkshop
Understanding and analyzing carrier files workshop repo
☆50Updated 5 years ago
Alternatives and similar repositories for CFWorkshop:
Users that are interested in CFWorkshop are comparing it to the libraries listed below
- Hunt malware with Volatility☆47Updated 10 months ago
- ☆6Updated 5 months ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Collection of scripts provided for public use☆34Updated this week
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 3 years ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆52Updated last year
- ☆87Updated last year
- Scripts to facilitate filtering with Plaso☆124Updated 4 years ago
- The Windows Malware Analysis Reversing Core Tools☆93Updated 4 years ago
- Jupyter notebooks for threat hunting☆55Updated last week
- Active Directory Purple Team Playbook☆106Updated last year
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆67Updated last week
- Blueteam operational triage registry hunting/forensic tool.☆145Updated last year
- Full of public notes and Utilities☆98Updated last month
- YARA rule analyzer to improve rule quality and performance☆97Updated 3 months ago
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 3 months ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆86Updated last year
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆72Updated last year
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- ☆68Updated 3 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆118Updated last year
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- My Jupyter Notebooks☆36Updated 3 weeks ago
- JPCERT/CC public YARA rules repository☆106Updated 3 months ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆144Updated last year
- ☆33Updated 5 months ago
- A repo to support the book☆107Updated 3 years ago
- ☆65Updated 2 years ago