Topic: dfir Goto Github
Some thing interesting about dfir
Some thing interesting about dfir
dfir,Open Source EDR for Windows
Organization: 0xrawsec
Home Page: https://rawsec.lu
dfir,A collection of resources for Threat Hunters - Sponsored by Falcon Guard
User: a3sal0n
Home Page: https://falconguard.cz
dfir,Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
User: api0cradle
dfir,Everything related to Linux Forensics
User: ashemery
Home Page: https://linuxdfir.ashemery.com/
dfir,A knowledge base of actionable Incident Response techniques
Organization: atc-project
dfir,KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
User: bert-janp
Home Page: https://kqlquery.com
dfir,A DFIR tool written in Python.
Organization: cisagov
dfir,Automate the creation of a lab environment complete with security tooling and logging best practices
User: clong
dfir,A curated list of awesome forensic analysis tools and resources
User: cugu
Home Page: http://cugu.github.io/awesome-forensics/
dfir,Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
User: cyb3r-monk
dfir,A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
User: darkquasar
dfir,Digital Forensics Investigation Platform
User: dfirkuiper
dfir,Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (part of NCC Group).
Organization: fox-it
Home Page: https://docs.dissect.tools/en/latest/
dfir,Extract and aggregate threat intelligence.
Organization: inquest
Home Page: https://inquest.readthedocs.io/projects/threatingestor/
dfir,IntelOwl: manage your Threat Intelligence at scale
Organization: intelowlproject
Home Page: https://intelowlproject.github.io
dfir,Investigate malicious Windows logon by visualizing and analyzing Windows event log
Organization: jpcertcc
dfir,Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Organization: lolbas-project
Home Page: https://lolbas-project.github.io
dfir,Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.
Organization: lookyloo
Home Page: https://www.lookyloo.eu
dfir,VirusTotal Wanna Be - Now with 100% more Hipster
Organization: maliceio
dfir,Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Organization: matanolabs
Home Page: https://matano.dev
dfir,A list of cyber-chef recipes and curated links
User: mattnotmax
dfir,A curated list of tools for incident response
User: meirwah
dfir,Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
User: mikeroyal
dfir,YARA signature and IOC database for my scanners and tools
User: neo23x0
dfir,:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
Organization: netflix-skunkworks
dfir,Web browser forensics for Google Chrome/Chromium
User: obsidianforensics
Home Page: https://dfir.blog/hindsight/
dfir,A repository of sysmon configuration modules
User: olafhartong
dfir,A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
User: olafhartong
dfir,A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Organization: otrf
dfir,You didn't think I'd go and leave the blue team out, right?
User: purp1ew0lf
dfir,Windows Events Attack Samples
User: sbousseaden
Home Page: https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES
dfir,Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
Organization: security-onion-solutions
Home Page: https://securityonion.net
dfir,MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Organization: securityjoes
Home Page: https://github.com/YosfanEilay
dfir,Collection of Event ID ressources useful for Digital Forensics and Incident Response
User: stuhli
dfir,Educational, CTF-styled labs for individuals interested in Memory Forensics
User: stuxnet999
dfir,UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
User: tclahr
Home Page: https://tclahr.github.io/uac-docs
dfir,Cortex: a Powerful Observable Analysis and Active Response Engine
Organization: thehive-project
Home Page: https://thehive-project.org
dfir,TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Organization: thehive-project
Home Page: https://thehive-project.org
dfir,Malcom - Malware Communications Analyzer
User: tomchop
dfir,List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
User: toniblyx
dfir,Rapidly Search and Hunt through Windows Forensic Artefacts
Organization: withsecurelabs
dfir,Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
User: yampelo
dfir,Your Everyday Threat Intelligence
Organization: yeti-platform
Home Page: https://yeti-platform.io/
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.