solomonsonya / Xavier_MemoryAnalysis_Framework
Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
☆45Updated 2 years ago
Alternatives and similar repositories for Xavier_MemoryAnalysis_Framework:
Users that are interested in Xavier_MemoryAnalysis_Framework are comparing it to the libraries listed below
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated last year
- Forensic Artifact Collection Tool Matrix☆84Updated 6 months ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆31Updated 3 years ago
- Jupyter Notebooks for the Blue Team☆144Updated last month
- ☆68Updated 4 months ago
- Some important DFIR Resources☆83Updated 2 years ago
- ☆65Updated 2 years ago
- Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…☆17Updated last year
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 3 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated last month
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆99Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆123Updated last year
- This repo is where I store my Threat Hunting ideas/content☆87Updated 2 years ago
- Harness the power of Splunk for your investigations☆103Updated last month
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆83Updated last year
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆88Updated 6 months ago
- Incident Response documents and tooling☆72Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆149Updated 7 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 7 months ago
- The SOLVE-IT knowledge base for digital forensics☆27Updated this week
- Understanding and analyzing carrier files workshop repo☆50Updated 5 years ago
- Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them☆28Updated last year
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆55Updated 2 years ago
- The Threat Actor Profile Guide for CTI Analysts☆106Updated last year
- Collection of scripts provided for public use☆34Updated last week
- Completely Risky Active-Directory Simulation Hub☆99Updated last year
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated 11 months ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆84Updated 3 months ago
- Detection Engineering with YARA☆87Updated last year