vavarachen / volatility_automationLinks
A tool to automate memory dump processing using Volatility, including optional Splunk integration.
☆12Updated 5 years ago
Alternatives and similar repositories for volatility_automation
Users that are interested in volatility_automation are comparing it to the libraries listed below
Sorting:
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆55Updated 3 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Updated 2 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆14Updated 3 years ago
- Defence Against the Dark Arts☆34Updated 6 years ago
- Hunt malware with Volatility☆47Updated 5 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated 2 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment☆14Updated 2 weeks ago
- Python command line tool used for generating GIAC Certification indexes.☆29Updated 2 years ago
- ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing☆42Updated this week
- Penguin OS Forensic (or Flight) Recorder☆41Updated 11 months ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- A MITRE ATT&CK Lookup Tool☆46Updated last year
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Updated 2 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 5 years ago
- CLI generator for Velociraptor offline collector☆15Updated 2 months ago
- Cyber Threats Detection Rules☆14Updated 3 months ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 10 months ago
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆29Updated 11 months ago
- High-level Threat Intelligence playbooks☆17Updated 4 years ago
- Backstage Parser☆33Updated 3 years ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 3 years ago
- A collection of Sigma rules organized by MITRE ATT&CK technique☆18Updated 4 years ago
- Forensics artifacts collection☆21Updated 4 years ago
- My Jupyter Notebooks☆36Updated 9 months ago
- ☆14Updated 11 months ago
- Public tools, scripts or code snippets that can help when working with our products☆46Updated 7 months ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 3 years ago
- Forensic cheatsheets for use with cheat☆15Updated 4 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆32Updated last year