weslambert / securityonion-velociraptorView external linksLinks
Run Velociraptor on Security Onion
☆40Jul 27, 2022Updated 3 years ago
Alternatives and similar repositories for securityonion-velociraptor
Users that are interested in securityonion-velociraptor are comparing it to the libraries listed below
Sorting:
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆114Sep 14, 2022Updated 3 years ago
- CLI generator for Velociraptor offline collector☆15Oct 10, 2025Updated 4 months ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Feb 20, 2024Updated last year
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- Docker image for Velocidex Velociraptor☆145Dec 29, 2025Updated last month
- Repo to hold mcp server for velociraptor☆29Jul 27, 2025Updated 6 months ago
- ☆14Oct 24, 2024Updated last year
- vTunnel is a tool that proxies IP traffic between guest and host networks by using the VSOCK protocol.☆28Mar 19, 2024Updated last year
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- ☆13Jan 15, 2026Updated last month
- PyVelociraptor contains the python bindings for the Velociraptor API.☆21Updated this week
- Documentation used for Shuffle☆21Updated this week
- ☆22Aug 29, 2024Updated last year
- PowerShell Script for Agentless Incident Response☆25Apr 5, 2018Updated 7 years ago
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆107Nov 23, 2022Updated 3 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆117Nov 28, 2023Updated 2 years ago
- Old home of LimaCharlie, open source EDR☆32Sep 4, 2023Updated 2 years ago
- Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're d…☆47Jan 14, 2026Updated last month
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year
- AWS LocalStack + Spark Cluster + Zeppelin [Docker]☆10Jul 6, 2022Updated 3 years ago
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆36Jun 12, 2016Updated 9 years ago
- Defence Against the Dark Arts☆34Sep 15, 2019Updated 6 years ago
- ATT&CK Remote Threat Hunting Incident Response☆206Dec 8, 2024Updated last year
- Wireless Emulation Link Layer Exchange Daemon. These applications are used to extend a mac80211_hwsim simulation across multiple VMs and …☆39May 22, 2024Updated last year
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆32Sep 26, 2024Updated last year
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- Port Knocking Sequence Discovery Scanner☆17Oct 19, 2016Updated 9 years ago
- Scripts and things.☆13Jan 23, 2026Updated 3 weeks ago
- OOB listener powered by cloudflare workers☆12Apr 13, 2025Updated 10 months ago
- This project is a SIEM with SIRP and Threat Intel, all in one.☆461Nov 20, 2024Updated last year
- ☆37Dec 17, 2020Updated 5 years ago
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆41Oct 20, 2020Updated 5 years ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆40Mar 25, 2024Updated last year
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆73Updated this week
- Tool Analysis Result Sheet☆356Dec 4, 2017Updated 8 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Jan 30, 2018Updated 8 years ago
- ☆12Oct 11, 2025Updated 4 months ago
- Sample queries for Advanced hunting in Windows Defender ATP☆11Apr 22, 2020Updated 5 years ago
- AdGuard Home via Tailscale☆11Nov 8, 2022Updated 3 years ago