Alternatives and similar repositories for Xavier_MemoryAnalysis_Framework:

Users that are interested in Xavier_MemoryAnalysis_Framework are comparing it to the libraries listed below

• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• dfir-scripts / siftgrab
  ☆66Updated 2 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆82Updated 3 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆151Updated 9 months ago
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆30Updated 2 years ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆86Updated last year
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated last year
• target / Threat-Hunting
  Detection of obfuscated Powershell commands
  ☆54Updated last year
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆76Updated 9 months ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆64Updated 2 years ago
• ReconInfoSec / velociraptor-to-timesketch
  ☆5Updated 3 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆118Updated 10 months ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated last week
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• joswr1ght / s3logparse
  Simple parser to get useful information from AWS S3 logs
  ☆24Updated 3 years ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• lasersharkkiller / Threat-Hunter
  Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…
  ☆16Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 9 months ago
• TazWake / Public
  Collection of scripts provided for public use
  ☆34Updated 3 months ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆51Updated last year
• Dead-Simple-Scripts / AutoLLR
  Script to automate Linux live evidence collection
  ☆27Updated 2 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆53Updated 2 years ago
• CrowdStrike / xwf-yara-scanner
  ☆86Updated last year
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆68Updated last year
• ANSSI-FR / AnoMark
  Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …
  ☆81Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆104Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆97Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆88Updated 2 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆96Updated last month