solomonsonya / Xavier_MemoryAnalysis_Framework

Related projects ⓘ

Alternatives and complementary repositories for Xavier_MemoryAnalysis_Framework

• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• dfir-scripts / siftgrab
  ☆57Updated 3 weeks ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆141Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 6 months ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆148Updated 6 months ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆77Updated last week
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆37Updated 9 months ago
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆29Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆75Updated 2 weeks ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 2 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆85Updated 10 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆110Updated 7 months ago
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆75Updated 6 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆82Updated last year
• archcloudlabs / BSidesRoc2022_Linux_Malware_Analysis_Course
  BSidesRoc 2022 Linux Malware/Forensics Course
  ☆72Updated 2 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated last year
• lasersharkkiller / Threat-Hunter
  Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…
  ☆16Updated last year
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆141Updated 2 months ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆75Updated 2 weeks ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆63Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆98Updated last year
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆63Updated last year
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆72Updated last year
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆75Updated 3 years ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆85Updated last year
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆119Updated this week
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆150Updated last year
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• Errum / IntelArchitectureMap
  Intelligence Architecture Mind Map
  ☆116Updated 8 months ago