Alternatives and similar repositories for btrForensics:

Users that are interested in btrForensics are comparing it to the libraries listed below

• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• gleeda / misc-scripts
  misc scripts
  ☆36Updated 6 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• msuhanov / regf-samples
  Windows registry samples
  ☆23Updated 6 years ago
• DeKrych / Dshell-plugins
  This plugins repository is an unofficial library of decoders for Dshell, the U.S. Army Research Lab's network forensic analysis framework…
  ☆27Updated 8 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆40Updated 5 years ago
• CIRCL / ssdc
  ssdeep based clustering tool
  ☆14Updated 9 years ago
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated 8 months ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 5 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• py4n6 / pyflag
  Python Forensic and Log Analysis GUI
  ☆25Updated 10 years ago
• pcbje / pyad1
  Python library for parsing AccessData AD1 images
  ☆31Updated last year
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated 5 months ago
• tom8941 / MISP-IOC-Validator
  Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format
  ☆14Updated 8 years ago
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 8 years ago
• log2timeline / l2tbinaries
  Binaries for the log2timeline projects and dependencies
  ☆39Updated 7 months ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 7 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆27Updated 3 years ago
• h3x2b / yara-rules
  Yara rules for detecting malware
  ☆23Updated 7 months ago
• PimmyTrousers / malpedia_cli
  Commandline utility to interact with the Malpedia service
  ☆22Updated 5 years ago
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆23Updated last year
• spcampbell / FireStic
  A Python script for indexing (putting) FireEye alert data into Elasticsearch...and notifying you too.
  ☆16Updated 6 years ago
• reed1713 / ELAT
  Event Log Analysis Tools
  ☆29Updated 8 years ago
• blackbagtech / sleuthkit-APFS
  A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.
  ☆26Updated 5 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago