rj-chap / CFWorkshop
Understanding and analyzing carrier files workshop repo
☆50Updated 5 years ago
Alternatives and similar repositories for CFWorkshop:
Users that are interested in CFWorkshop are comparing it to the libraries listed below
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Hunt malware with Volatility☆47Updated 11 months ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- The Windows Malware Analysis Reversing Core Tools☆94Updated 4 years ago
- Jupyter notebooks for threat hunting☆55Updated 3 weeks ago
- A repo to support the book☆107Updated 3 years ago
- ☆6Updated 6 months ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆145Updated last year
- ☆87Updated last year
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆145Updated last year
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 3 years ago
- ☆15Updated 3 years ago
- Scripts to facilitate filtering with Plaso☆124Updated 4 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated last year
- Collection of scripts used to deobfuscate GOOTLOADER malware samples.☆61Updated 4 months ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆67Updated last week
- Collection of scripts provided for public use☆34Updated last week
- Full of public notes and Utilities☆98Updated 2 months ago
- Script to automate Linux live evidence collection☆27Updated 2 years ago
- ☆50Updated 3 months ago
- ☆29Updated 4 years ago
- Active Directory Purple Team Playbook☆108Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- A GeoIP lookup utility utilizing ipinfo.io services.☆87Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆118Updated last year
- ☆34Updated 6 months ago
- My Jupyter Notebooks☆36Updated last month
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago