theflakes / Linux_Forensic_Harvester
Harvest Linux forensic data for operational triage of an event.
☆51Updated 3 months ago
Related projects: ⓘ
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- Forensic Artifact Collection Tool Matrix☆70Updated 2 years ago
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆29Updated 2 months ago
- 📇 Digital Forensics Artifact Repository (forensicanalysis edition)☆71Updated 7 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- ☆27Updated this week
- Digital Forensics Artifacts Knowledge Base☆71Updated 4 months ago
- Initial triage of Windows Event logs☆83Updated 3 months ago
- BlackBerry Threat Research & Intelligence☆90Updated 11 months ago
- ☆62Updated 3 years ago
- Automatic detection engineering technical state compliance☆49Updated 2 months ago
- Logbook for Digital Forensics and Incident Response☆48Updated 2 months ago
- ☆84Updated 7 months ago
- Linux Evidence Acquisition Framework☆114Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆108Updated 9 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆69Updated last week
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- A MITRE ATT&CK Lookup Tool☆41Updated 4 months ago
- Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…☆36Updated 6 months ago
- Collection of scripts provided for public use☆28Updated last month
- Sigma detection rules for hunting with the threathunting-keywords project☆47Updated 2 weeks ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆66Updated 9 months ago
- Penguin OS Forensic (or Flight) Recorder☆37Updated last month
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆34Updated 9 months ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆73Updated 3 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆64Updated 2 years ago
- Python library for threat intelligence☆78Updated 2 months ago