weslambert / velociraptor-dockerLinks
Docker image for Velocidex Velociraptor
☆131Updated 5 months ago
Alternatives and similar repositories for velociraptor-docker
Users that are interested in velociraptor-docker are comparing it to the libraries listed below
Sorting:
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 2 years ago
- Incident Response documents and tooling☆75Updated last year
- ☆10Updated 10 months ago
- Tools for simulating threats☆192Updated last year
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆113Updated last year
- A curated list of KAPE-related resources☆172Updated 3 months ago
- Repository of public reference frameworks for the DFIR community.☆117Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆154Updated 5 months ago
- ☆52Updated last year
- ☆68Updated 3 weeks ago
- A repository of my own Sigma detection rules.☆160Updated 11 months ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆202Updated 4 years ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆155Updated 3 years ago
- An opensource sigma conversion tool built using pysigma☆132Updated this week
- Rules generated from our investigations.☆197Updated 2 months ago
- Run Velociraptor on Security Onion☆39Updated 3 years ago
- Powershell module for VMWare vSphere forensics☆155Updated 9 months ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆90Updated last year
- Fast IOC and YARA Scanner☆83Updated 5 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆227Updated 4 months ago
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆125Updated this week
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆156Updated 6 months ago
- ☆88Updated 3 weeks ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆136Updated last year
- Forensic Artifact Collection Tool Matrix☆88Updated 9 months ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last week
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆204Updated 3 years ago
- Jupyter notebooks for threat hunting☆58Updated 5 months ago