soufianetahiri / ransomware_Incident_Response_FR
petit "playbook" qui pourrait servir de base à une réponse à incident lors d'une attaque de type ransomware
☆21Updated 2 years ago
Alternatives and similar repositories for ransomware_Incident_Response_FR:
Users that are interested in ransomware_Incident_Response_FR are comparing it to the libraries listed below
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 2 months ago
- Hunt malware with Volatility☆47Updated 11 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated 5 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- ESXi Cyber Security Incident Response Script☆23Updated 7 months ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- DNS Dashboard for hunting and identifying beaconing☆15Updated 4 years ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆52Updated last year
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆26Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- Sigma rules converted for direct use with Zircolite☆13Updated this week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 3 years ago
- Logbook for Digital Forensics and Incident Response☆50Updated 9 months ago
- Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.☆27Updated 2 years ago
- ☆34Updated 6 months ago
- A quick reference guide for python script development in DFIR☆16Updated last year
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆19Updated last year
- ☆28Updated 3 months ago
- Script to automate Linux live evidence collection☆27Updated 2 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆20Updated 4 years ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Digital Forensics Artifacts Knowledge Base☆81Updated 11 months ago
- ☆21Updated 2 years ago
- List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…☆26Updated 3 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 2 months ago
- Bring Your Own Mitre Att&ck © Matrix !☆13Updated last year