theflakes/Ultimate-Forensics-VM external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

theflakes/Ultimate-Forensics-VM

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/theflakes/Ultimate-Forensics-VM)

Close

theflakes / Ultimate-Forensics-VMView on GitHubMore

• External links
• Readme badge

Evolving directions on building the best Open Source Forensics VM

☆161Jul 5, 2018Updated 7 years ago

Alternatives and similar repositories for Ultimate-Forensics-VM

Users that are interested in Ultimate-Forensics-VM are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• defensivedepth / Pertinax

  View on GitHub
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Feb 20, 2024Updated 2 years ago
• philhagen / sof-elk

  View on GitHub
  Configuration files for the SOF-ELK VM
  ☆1,731May 16, 2026Updated last week
• MatthewClarkMay / fTriage

  View on GitHub
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Mar 12, 2019Updated 7 years ago
• Security-Onion-Solutions / security-onion

  View on GitHub
  Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
  ☆3,114Apr 16, 2021Updated 5 years ago
• ajackal / ir_scripts

  View on GitHub
  incident response scripts
  ☆18Mar 4, 2019Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• SMAPPER / NXLog-AutoConfig

  View on GitHub
  ☆50Aug 30, 2020Updated 5 years ago
• SkiTheSlicer / securityonion-airgap

  View on GitHub
  Scripts to maintain Security Onion servers in an airgapped environment.
  ☆10Mar 13, 2017Updated 9 years ago
• mttaggart / jupyter-pancakes

  View on GitHub
  Jupyter demo repository for PancakesCon2020
  ☆16Mar 23, 2020Updated 6 years ago
• Security-Onion-Solutions / securityonion-elastic

  View on GitHub
  Security Onion Elastic Stack
  ☆46Feb 1, 2021Updated 5 years ago
• orlikoski / Skadi

  View on GitHub
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆507Oct 21, 2022Updated 3 years ago
• orlikoski / CDQR

  View on GitHub
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆344Jun 25, 2022Updated 3 years ago
• scudette / rekall-agent-server

  View on GitHub
  Rekall is an endpoint security solution.
  ☆38Feb 12, 2018Updated 8 years ago
• BinaryDefense / auto-ossec

  View on GitHub
  ☆142May 24, 2024Updated 2 years ago
• Security-Onion-Solutions / securityonion-setup

  View on GitHub
  ☆36Dec 7, 2020Updated 5 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• Security-Onion-Solutions / securityonion-nsmnow-admin-scripts

  View on GitHub
  ☆22Mar 16, 2020Updated 6 years ago
• Velocidex / evtx-data

  View on GitHub
  Publicly shareable windows event log message data
  ☆29Nov 29, 2019Updated 6 years ago
• 3CORESec / AWS-AutoMirror

  View on GitHub
  Automation of VPC Traffic Mirror Sessions in AWS
  ☆35Nov 15, 2025Updated 6 months ago
• cvandeplas / ELK-forensics

  View on GitHub
  ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)
  ☆179Jul 10, 2019Updated 6 years ago
• RedSiege / WMIOps

  View on GitHub
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆387Jun 25, 2024Updated last year
• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆148Sep 2, 2025Updated 8 months ago
• Cyb3rPandaH / Tableau-ATTCK

  View on GitHub
  Understanding ATT&CK Matrix for Enterprise
  ☆80May 16, 2018Updated 8 years ago
• jipegit / IRNotes

  View on GitHub
  Some IR notes
  ☆73Jul 23, 2016Updated 9 years ago
• OMENScan / AChoir

  View on GitHub
  Windows Live Artifacts Acquisition Script
  ☆192Jun 20, 2022Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• orlikoski / CyLR

  View on GitHub
  CyLR - Live Response Collection Tool
  ☆725Jun 1, 2022Updated 3 years ago
• MHaggis / sysmon-dfir

  View on GitHub
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆941Dec 12, 2023Updated 2 years ago
• aboutsecurity / rastrea2r

  View on GitHub
  Collecting & Hunting for IOCs with gusto and style
  ☆117Aug 9, 2018Updated 7 years ago
• davidpany / WMI_Forensics

  View on GitHub
  ☆313Aug 14, 2020Updated 5 years ago
• keydet89 / Tools

  View on GitHub
  Tools from WFA 4/e, timeline tools, etc.
  ☆145Feb 29, 2024Updated 2 years ago
• PoorBillionaire / Windows-Prefetch-Carver

  View on GitHub
  Carve Windows Prefetch files from arbitrary binary data
  ☆16Jun 11, 2017Updated 8 years ago
• cclgroupltd / chrome-profile-view

  View on GitHub
  Python web app for previewing data in a Chrome Profile Folder
  ☆26Jul 1, 2024Updated last year
• biggiesmallsAG / nightHawkResponse

  View on GitHub
  Incident Response Forensic Framework
  ☆610Nov 20, 2019Updated 6 years ago
• CrowdStrike / Forensics

  View on GitHub
  Scripts and code referenced in CrowdStrike blog posts
  ☆340Nov 13, 2019Updated 6 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• RyanDFIR / scripts

  View on GitHub
  Small scripts and POCs related to digital forensics
  ☆18Nov 1, 2022Updated 3 years ago
• initconf / brocon-15

  View on GitHub
  brocon-15 scripts
  ☆13Apr 3, 2017Updated 9 years ago
• jepayneMSFT / WEFFLES

  View on GitHub
  Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
  ☆202Dec 11, 2017Updated 8 years ago
• MarkBaggett / srum-dump

  View on GitHub
  A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.
  ☆750Jun 5, 2025Updated 11 months ago
• randomaccess3 / 4n6_stuff

  View on GitHub
  Git for me to put all my forensics stuff
  ☆23Sep 2, 2025Updated 8 months ago
• Invoke-IR / ForensicPosters

  View on GitHub
  ☆454Nov 21, 2024Updated last year
• j-0-t / murmamau

  View on GitHub
  Fetching data from system
  ☆11Jun 18, 2017Updated 8 years ago