All the useful tools interesting to be used
☆24Sep 20, 2022Updated 3 years ago
Alternatives and similar repositories for DFIR-Tools
Users that are interested in DFIR-Tools are comparing it to the libraries listed below
Sorting:
- Anteater is Reconnaissance tool for discovering interesting files and folders in a web application that most likely has been misconfigure…☆13Jun 12, 2024Updated last year
- Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment☆14Jan 7, 2026Updated 2 months ago
- Hand list of Powershell commands frequently used during penetration tests☆15Oct 14, 2018Updated 7 years ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆44Mar 1, 2026Updated last week
- Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…☆45Apr 4, 2022Updated 3 years ago
- ☆19Aug 2, 2020Updated 5 years ago
- Autopsy NBM Plugins☆18Jul 9, 2023Updated 2 years ago
- Jupyter Notebooks for the Blue Team☆39Jan 16, 2025Updated last year
- Tony's collection of powershell scripts, typically geared toward cybersec☆35Jan 16, 2026Updated last month
- OSCP Scripts☆14Jan 21, 2016Updated 10 years ago
- The following repository contains the SecurityTube Linux Assembly Expert assignments, and exam☆18Nov 27, 2017Updated 8 years ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23May 23, 2022Updated 3 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Dec 2, 2025Updated 3 months ago
- ☆29Jan 9, 2025Updated last year
- Scanner that runs enumeration scripts while you do other things, made for the OSCP exam☆26May 1, 2020Updated 5 years ago
- Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.☆61Nov 18, 2021Updated 4 years ago
- A simple shell script which utilizes nmap, nikto, dirb, enum4linux and other open source goodies to automate enumeration process.☆19Jan 13, 2022Updated 4 years ago
- ☆25Oct 14, 2017Updated 8 years ago
- A script to assist in processing forensic RAM captures for malware triage☆26Feb 4, 2021Updated 5 years ago
- Digital forensic acquisition tool for Windows based incident response.☆347May 7, 2024Updated last year
- CSIRT Jump Bag☆27Apr 25, 2024Updated last year
- My notebook for OSCP Lab☆26Aug 6, 2017Updated 8 years ago
- Information about the open-source-dfir slack community☆30Jun 17, 2023Updated 2 years ago
- Windows Privilege Escalation☆30Aug 14, 2020Updated 5 years ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Sep 13, 2023Updated 2 years ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆209Oct 19, 2020Updated 5 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆35Feb 2, 2022Updated 4 years ago
- DFIRTrack - The Incident Response Tracking Application☆533Jan 13, 2026Updated last month
- Where I'll be posting my scripts, guides, cheatsheets, and notes for for my OSCP journey.☆34Nov 6, 2017Updated 8 years ago
- Sigma is Generic Signature Format for SIEM Systems written by Florian Roth @Neo23x0 and Thomas Patzke. This repository is providing sprea…☆33Oct 16, 2019Updated 6 years ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Jul 13, 2021Updated 4 years ago
- Set of Yara rules for finding files using magics headers☆142Sep 8, 2020Updated 5 years ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆33Mar 9, 2022Updated 4 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆33May 25, 2024Updated last year
- ☆26Sep 2, 2016Updated 9 years ago
- Malware Analysis (Zararlı Yazılım Analizi)☆32Aug 1, 2019Updated 6 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- A list of Autopsy awesome plugins.☆77Jan 20, 2022Updated 4 years ago
- Adaptive eXocortex & Integrated Outer Memory Framework☆34Mar 15, 2020Updated 5 years ago