Alternatives and similar repositories for volatility-binaries

Users that are interested in volatility-binaries are comparing it to the libraries listed below

• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆69Updated last year
• strozfriedberg / qelp
  Quick ESXi Log Parser
  ☆22Updated 6 months ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆55Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 10 months ago
• cocopollo / HunterM
  macOS Artifacts
  ☆31Updated 4 months ago
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Updated 2 years ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated 3 weeks ago
• openrelik / openrelik-deploy
  Tools and scripts to deploy and manage OpenRelik instances
  ☆14Updated last month
• svch0stz / velociraptor-detections
  ☆22Updated 2 years ago
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆44Updated 4 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 7 months ago
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆99Updated last month
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated last year
• op7ic / Cloud-Investigate
  A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.
  ☆39Updated last year
• a1l4m / Mac-Triage
  A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight,…
  ☆22Updated 4 months ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆14Updated last year
• eSentire / iocs
  ☆38Updated last week
• WesSec / VelociDeploy-o-Matic
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Updated 2 years ago
• Beercow / DFIR_Toolbar
  ☆23Updated 5 months ago
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆78Updated 4 years ago
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆24Updated 2 weeks ago
• kev365 / ToolFetcher
  A tool for fetching DFIR and other GitHub tools.
  ☆24Updated last month
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated last year
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆56Updated 2 months ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆31Updated 4 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆96Updated 2 years ago
• 0xHasanM / regexplore
  Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite
  ☆17Updated 2 years ago