Alternatives and similar repositories for iris-velociraptorartifact-module:

Users that are interested in iris-velociraptorartifact-module are comparing it to the libraries listed below

• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆122Updated 3 weeks ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆218Updated this week
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆139Updated this week
• strozfriedberg / velociraptor-lateral-movement
  ☆12Updated last year
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆121Updated 3 months ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆75Updated 4 months ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆200Updated last week
• Yamato-Security / hayabusa-sample-evtx
  Sample evtx files to use for testing hayabusa detection rules
  ☆51Updated 4 months ago
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆183Updated 3 months ago
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆108Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆188Updated last month
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆157Updated 6 months ago
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆119Updated 2 months ago
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆233Updated last week
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 6 months ago
• magicsword-io / LOLRMM
  LotL RMM
  ☆152Updated this week
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆95Updated 2 weeks ago
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆143Updated last week
• mdecrevoisier / SIGMA-detection-rules
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆354Updated 2 months ago
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆192Updated this week
• secure-cake / rapid-endpoint-investigations
  Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
  ☆115Updated this week
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆111Updated 2 weeks ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆153Updated 10 months ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆91Updated 2 years ago
• weslambert / velocistack
  ☆51Updated 10 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆163Updated last year
• Digital-Forensics-Discord-Server / ArtifactParsers
  A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts
  ☆59Updated 4 months ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆150Updated 4 months ago
• socfortress / CoPilot
  SOCFortress CoPilot
  ☆263Updated this week