Alternatives and similar repositories for tapir:

Users that are interested in tapir are comparing it to the libraries listed below

• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 10 months ago
• CrowdStrike / xwf-yara-scanner
  ☆86Updated last year
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆63Updated last year
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆38Updated 2 weeks ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆80Updated 10 months ago
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆50Updated 8 months ago
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated last month
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 4 months ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated 11 months ago
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆39Updated last month
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆32Updated 4 months ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆52Updated last year
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• 3gbCyber / IR-Last-Write-Time
  Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.
  ☆27Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆67Updated last month
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆30Updated 10 months ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆30Updated 3 years ago
• jasonsford / intel_collector
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆31Updated last year
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 2 years ago
• 00010111 / gMetaDataParse
  ☆20Updated 2 weeks ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated 11 months ago
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆26Updated 11 months ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• slaughterjames / excelpeek
  ☆38Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago