Alternatives and similar repositories for Digital-Forensics-Script-for-Linux

Users that are interested in Digital-Forensics-Script-for-Linux are comparing it to the libraries listed below

• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123Updated 2 years ago
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆108Updated 8 months ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆349Updated 5 months ago
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆171Updated 2 years ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆128Updated 3 months ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated last year
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆82Updated 8 months ago
• tsale / awesome-dfir-skills
  A curated collection of DFIR skills and workflows for InfoSec practitioners.
  ☆200Updated last week
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆126Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 9 months ago
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆105Updated 7 months ago
• curated-intel / Attribution-to-IP
  A collection of methods to learn who the owner of an IP address is.
  ☆223Updated 3 months ago
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆192Updated last year
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago
• WGU-CCDC / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆106Updated 2 years ago
• BushidoUK / Operational-Security-101
  A repository of advice and guides to share with friends and family who are concerned about their safety during online activities and the …
  ☆143Updated last year
• joshbrunty / DFIR-Regular-Expressions
  Regular Expressions List used in Digital Forensic Tasks
  ☆92Updated 10 months ago
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆238Updated 7 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆221Updated 3 months ago
• archcloudlabs / HackSpaceCon_Malware_Analysis_Course
  Free training course offered at Hack Space Con 2023
  ☆137Updated 2 years ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• TheRavenFile / Daily-Hunt
  IOCs collected during day-to-day activities
  ☆100Updated this week
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆289Updated 2 months ago
• AttackIQ / DetectIQ
  ☆118Updated 7 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆193Updated 11 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆179Updated 7 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆109Updated last year
• digitalsleuth / WIN-FOR
  Windows Forensics Environment Builder
  ☆171Updated last month
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• LetsDefend / incident-response-playbooks
  ☆191Updated last year