weslambert / velociraptor-dockerLinks
Docker image for Velocidex Velociraptor
☆128Updated 3 months ago
Alternatives and similar repositories for velociraptor-docker
Users that are interested in velociraptor-docker are comparing it to the libraries listed below
Sorting:
- Powershell module for VMWare vSphere forensics☆152Updated 7 months ago
- ☆68Updated 6 months ago
- An opensource sigma conversion tool built using pysigma☆130Updated last week
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆109Updated 2 years ago
- ☆8Updated 8 months ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆109Updated last year
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆203Updated 2 years ago
- Harness the power of Splunk for your investigations☆111Updated this week
- Tools for simulating threats☆186Updated last year
- Incident Response documents and tooling☆74Updated last year
- A repository of my own Sigma detection rules.☆160Updated 9 months ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- A curated list of KAPE-related resources☆169Updated last month
- Rules generated from our investigations.☆195Updated last week
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆155Updated 4 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆318Updated last month
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆121Updated this week
- ☆51Updated last year
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆134Updated last year
- A repository to share publicly available Velociraptor detection content☆173Updated this week
- ☆87Updated last year
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆154Updated 3 years ago
- SentinelOne STAR Rules☆62Updated 4 months ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated 2 months ago
- Repository of attack and defensive information for Business Email Compromise investigations☆256Updated last month
- A GeoIP lookup utility utilizing ipinfo.io services.☆88Updated last year