solomonsonya / Xavier_MemoryAnalysis_FrameworkLinks
Xavier Framework is a user interface wrapper built on top of the Volatility(c) memory forensics framework.
☆46Updated 3 years ago
Alternatives and similar repositories for Xavier_MemoryAnalysis_Framework
Users that are interested in Xavier_MemoryAnalysis_Framework are comparing it to the libraries listed below
Sorting:
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆32Updated 3 years ago
- Forensic Artifact Collection Tool Matrix☆92Updated last year
- Open Threat Hunting Framework☆123Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆263Updated 2 years ago
- ☆65Updated 4 months ago
- ☆68Updated 2 months ago
- Jupyter Notebooks for the Blue Team☆145Updated 10 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆162Updated 10 months ago
- Detection Engineering with YARA☆87Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Updated last year
- Repository of public reference frameworks for the DFIR community.☆121Updated 2 years ago
- Script to automate Linux live evidence collection☆28Updated 3 years ago
- Some important DFIR Resources☆84Updated 2 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated 2 years ago
- Powershell module for VMWare vSphere forensics☆158Updated last year
- Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…☆18Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆342Updated 2 months ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆89Updated last year
- The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically foc…☆58Updated last year
- The backend server handling API requests and task management☆55Updated this week
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Updated 2 years ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated 2 years ago
- A repository to share publicly available Velociraptor detection content☆194Updated last week
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆55Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆126Updated last year
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆87Updated 5 months ago
- Sigma rules to share with the community☆123Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆89Updated last year