weslambert / velociraptor-dockerLinks
Docker image for Velocidex Velociraptor
☆131Updated 5 months ago
Alternatives and similar repositories for velociraptor-docker
Users that are interested in velociraptor-docker are comparing it to the libraries listed below
Sorting:
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆201Updated 4 years ago
- A python script developed to process Windows memory images based on triage type.☆263Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆111Updated 2 years ago
- ☆68Updated 7 months ago
- Powershell module for VMWare vSphere forensics☆153Updated 8 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆153Updated 4 months ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆111Updated last year
- ☆51Updated last year
- ☆8Updated 9 months ago
- Incident Response documents and tooling☆74Updated last year
- Convert Sigma rules to Wazuh rules☆67Updated last year
- A curated list of KAPE-related resources☆171Updated 3 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆164Updated last year
- Repository of public reference frameworks for the DFIR community.☆116Updated 2 years ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆155Updated 5 months ago
- Tools for simulating threats☆191Updated last year
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆155Updated 3 years ago
- Rules generated from our investigations.☆196Updated last month
- A repository of my own Sigma detection rules.☆160Updated 10 months ago
- An opensource sigma conversion tool built using pysigma☆132Updated last month
- Artifact collection tool for *nix systems☆208Updated last year
- A GeoIP lookup utility utilizing ipinfo.io services.☆89Updated last year
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 3 weeks ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆204Updated 3 years ago
- Forensic Artifact Collection Tool Matrix☆88Updated 8 months ago
- Fast IOC and YARA Scanner☆81Updated 5 years ago
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆124Updated last week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆327Updated 2 months ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆223Updated 4 months ago
- ☆88Updated last week