Alternatives and similar repositories for Digital-Forensics-Script-for-Linux

Users that are interested in Digital-Forensics-Script-for-Linux are comparing it to the libraries listed below

• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆124Updated 2 years ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆349Updated 6 months ago
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆172Updated 2 years ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆129Updated 3 months ago
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆109Updated 9 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆126Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 9 months ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated last year
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆192Updated last year
• tsale / awesome-dfir-skills
  A curated collection of DFIR skills and workflows for InfoSec practitioners.
  ☆242Updated 2 weeks ago
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆106Updated 7 months ago
• TheRavenFile / Daily-Hunt
  IOCs collected during day-to-day activities
  ☆104Updated last week
• curated-intel / Attribution-to-IP
  A collection of methods to learn who the owner of an IP address is.
  ☆224Updated 4 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆82Updated 9 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆258Updated 2 years ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆180Updated 8 months ago
• BushidoUK / Operational-Security-101
  A repository of advice and guides to share with friends and family who are concerned about their safety during online activities and the …
  ☆143Updated last year
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆193Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆222Updated 3 months ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆148Updated 3 months ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆73Updated last year
• AttackIQ / DetectIQ
  ☆120Updated 8 months ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆201Updated 2 years ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆109Updated last year
• pr0xylife / Pikabot
  ☆32Updated last year
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆81Updated last month
• MHaggis / PowerShell-Hunter
  PowerShell tools to help defenders hunt smarter, hunt harder.
  ☆453Updated 3 months ago
• joshbrunty / DFIR-Regular-Expressions
  Regular Expressions List used in Digital Forensic Tasks
  ☆92Updated 11 months ago
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago