theflakes / Linux_Forensic_HarvesterLinks
Harvest Linux forensic data for operational triage of an event.
☆51Updated last year
Alternatives and similar repositories for Linux_Forensic_Harvester
Users that are interested in Linux_Forensic_Harvester are comparing it to the libraries listed below
Sorting:
- Blueteam operational triage registry hunting/forensic tool.☆149Updated this week
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆132Updated 3 years ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 7 months ago
- Penguin OS Forensic (or Flight) Recorder☆40Updated 8 months ago
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆105Updated last year
- Library of threat hunts to get any user started!☆45Updated 5 years ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- TAPIR is a multi-user, client/server, incident response framework☆45Updated 3 years ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Forensic Artifact Collection Tool Matrix☆89Updated 9 months ago
- ☆29Updated 7 months ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Updated last year
- Linux Evidence Acquisition Framework☆119Updated 11 months ago
- ☆88Updated last month
- ☆68Updated 4 years ago
- ReWrite of AChoir in Go for Cross Platform☆40Updated this week
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year
- ESXi Cyber Security Incident Response Script☆25Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- ☆60Updated 3 years ago
- A collection of tips for using MISP.☆74Updated 8 months ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated 2 months ago
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Updated 5 years ago