telekom-security / acquire-aws-ec2Links
A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
☆38Updated 3 years ago
Alternatives and similar repositories for acquire-aws-ec2
Users that are interested in acquire-aws-ec2 are comparing it to the libraries listed below
Sorting:
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆132Updated 3 years ago
- AWS EKS Cluster Forensics☆23Updated 4 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- pollen - A command-line tool for interacting with TheHive☆36Updated 6 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- Recon Hunt Queries☆78Updated 4 years ago
- CSIRT Jump Bag☆26Updated last year
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- The Purpose of this research tool is to provide a Python client into RiskIQ API services.☆22Updated 4 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆42Updated 4 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆61Updated 4 months ago
- Sharing Threat Hunting runbooks☆25Updated 6 years ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆44Updated 3 years ago
- A collection of tips for using MISP.☆74Updated 10 months ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆29Updated 3 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- OpenIOC rules to facilitate hunting for indicators of compromise☆37Updated 3 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 6 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Collection of scripts used to analyse malware or emails☆20Updated 5 years ago
- Golang implementation of PyMISP-feedgenerator☆18Updated 3 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- The Intelligent Process Lifecycle of Active Cyber Defenders☆33Updated 2 years ago
- Browser Shortcuts for Cyber Security Related Online Services☆78Updated 4 years ago
- ☆25Updated 3 years ago