yasser-alghamdi / winterfell-collectionView external linksLinks
Winterfell is a group of windows batch scripts to collect Windows forensics data and perform efficient, and fast incident response and threat hunting activities.
☆52Jul 23, 2020Updated 5 years ago
Alternatives and similar repositories for winterfell-collection
Users that are interested in winterfell-collection are comparing it to the libraries listed below
Sorting:
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Aug 8, 2020Updated 5 years ago
- ☆21Apr 19, 2024Updated last year
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Nov 27, 2020Updated 5 years ago
- Resolvn Threat Hunting Virtual Machine☆139Aug 16, 2019Updated 6 years ago
- ☆24Nov 3, 2019Updated 6 years ago
- log Forenix 🕵️- Your Linux Forensic Artifacts Collector Tool! 🚀☆30Jun 18, 2024Updated last year
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 7 months ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana☆10Aug 17, 2018Updated 7 years ago
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- ☆11Mar 9, 2018Updated 7 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- Invoke-LiveResponse☆150Feb 22, 2022Updated 3 years ago
- macos-collector - Automated Collection of macOS Forensic Artifacts for DFIR☆29Jan 29, 2026Updated 2 weeks ago
- Parsing MITRE EDR Evaluation results☆12Dec 5, 2018Updated 7 years ago
- ☆12Jun 16, 2021Updated 4 years ago
- A parser/timeline creator for auditd logs.☆16Aug 5, 2014Updated 11 years ago
- Scan outlook inbox with yara rules,APIs and IOCs☆14Aug 3, 2018Updated 7 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆12Aug 4, 2024Updated last year
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Jul 23, 2020Updated 5 years ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆17Jan 5, 2023Updated 3 years ago
- Scripts for comparing Microsoft Windows compliance with the ASD 1709 & Office 2016 Hardening Guides☆160Dec 20, 2019Updated 6 years ago
- Digital Forensics Investigation Platform☆872Oct 12, 2024Updated last year
- Digital forensic acquisition tool for Windows based incident response.☆346May 7, 2024Updated last year
- ☆92Jul 30, 2025Updated 6 months ago
- Vuls Beater for Elasticsearch - connecting vuls☆17Dec 15, 2020Updated 5 years ago
- This extension provide a Python panel for writing custom proxy script.☆16Aug 26, 2019Updated 6 years ago
- BSidesVienna Homepage☆16Nov 24, 2025Updated 2 months ago
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆18Feb 9, 2024Updated 2 years ago
- ☆12Apr 21, 2019Updated 6 years ago
- Tools to search through massive amounts of data☆21Oct 20, 2025Updated 3 months ago
- FACT is a tool to collect, process and visualise forensic data from clusters of machines running in the cloud or on-premise.☆17Aug 30, 2024Updated last year
- Detection Ideas & Rules repository.☆178Sep 10, 2021Updated 4 years ago
- PhishReporter Outlook Add-In in an Outlook Add-In that allows users to report phishing e-mails to a specific e-mail address for further p…☆35Jan 25, 2017Updated 9 years ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆20Jul 1, 2023Updated 2 years ago
- 威胁检测规则集☆15Jul 5, 2019Updated 6 years ago
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Security even with a small budget - there is no excuse!☆20May 24, 2023Updated 2 years ago