Lists (1)
Stars
A list of free and open forensics analysis tools and other resources
A toolset to make a system look as if it was the victim of an APT attack
**KapeSaw** is a modular PowerShell script for automated forensic collection and timelines
Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
Live Feed of C2 servers, tools, and botnets
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (EXT4, XFS) journals (not systemd-journald), generates timelines, and detects suspicious activities.
Investigate malicious Windows logon by visualizing and analyzing Windows event log
MS Word (DOCx) Parsing Tool
A tool for fetching DFIR and other GitHub tools.
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
A resource containing all the tools each ransomware gangs uses
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically focusing on programmable logic controllers (PLC). This challenge…
DroneXtract is a digital forensics suite for DJI drones 🔍. Analyze sensor values, visualize flight maps, and audit for criminal activity 🗺
🏴☠️💰 Another Ransomware gang tracker
AndrewRathbun / GHOSTS
Forked from cmu-sei/GHOSTSGHOSTS is a realistic user simulation framework for cyber simulation, training, and exercise
Resources provided by the community that can serve to be useful for Law Enforcement worldwide
Digital Forensics artifact repository
AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.
Detect Tactics, Techniques & Combat Threats
PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
Powershell module for VMWare vSphere forensics