Alternatives and similar repositories for Linux_Forensic_Harvester:

Users that are interested in Linux_Forensic_Harvester are comparing it to the libraries listed below

• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆145Updated last year
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆78Updated 9 months ago
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆39Updated 3 weeks ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆114Updated 5 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆39Updated 2 months ago
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆50Updated 8 months ago
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆42Updated 4 years ago
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated last month
• CrowdStrike / xwf-yara-scanner
  ☆86Updated last year
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆130Updated 3 years ago
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆30Updated 3 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆44Updated 2 years ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆97Updated last year
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆76Updated 4 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆82Updated 4 months ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆77Updated last year
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆97Updated 2 months ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated 10 months ago
• cdefid / TheHiveIRPlaybook
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Updated 4 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆64Updated 3 years ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆25Updated 2 months ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆52Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated last year
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated 11 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆95Updated 8 months ago
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆58Updated 2 years ago
• AndrewRathbun / EventTranscript.db-Research
  A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
  ☆39Updated 2 years ago