dfir
Here are 551 public repositories matching this topic...
Automation and Scaling of Digital Forensics Tools
-
Updated
May 11, 2024 - Python
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
-
Updated
May 10, 2024 - Python
IntelOwl: manage your Threat Intelligence at scale
-
Updated
May 10, 2024 - Python
Collection of acquisition scripts for collecting digital forensic artefacts
-
Updated
May 10, 2024 - Python
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
-
Updated
May 10, 2024 - XSLT
Warning lists to inform users of MISP about potential false-positives or other information in indicators
-
Updated
May 10, 2024 - Python
Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
-
Updated
May 10, 2024 - Python
CLI tools for forensic investigation of Windows artifacts
-
Updated
May 10, 2024 - Rust
A curated list of tools for incident response. With repository stars⭐ and forks🍴
-
Updated
May 10, 2024
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
-
Updated
May 10, 2024 - Rust
Web browser forensics for Google Chrome/Chromium
-
Updated
May 9, 2024 - Python
Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, Domain, ASN, DNS and Threat Indicator matches.
-
Updated
May 9, 2024 - Go
List of some cybersecurity conferences
-
Updated
May 9, 2024
A cross platform forensic parser written in Rust!
-
Updated
May 9, 2024 - Rust
Forensic Artifacts Collecting Tool Set.
-
Updated
May 8, 2024 - Go
Sigma detection rules for hunting with the threathunting-keywords project
-
Updated
May 8, 2024 - Python
Improve this page
Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."