dfir

Here are 435 public repositories matching this topic...

toniblyx / my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

security auditing cloud aws-lambda incident-response iam dfir cloudtrail aws-infrastructure security-tools aws-inventory

Updated Sep 23, 2022
Shell

meirwah / awesome-incident-response

Star

A curated list of tools for incident response

security list awesome incident-response dfir cybersecurity awesome-list incident-response-tooling

Updated Oct 13, 2022

LOLBAS-Project / LOLBAS

Star

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

dfir blueteam redteam purpleteam lolbins lolscripts living-off-the-land

Updated Nov 2, 2022
XSLT

zeek / zeek

Star

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

security pcap dfir bro network-monitoring nsm zeek

Updated Nov 3, 2022
C++

clong / DetectionLab

Sponsor

Star

Automate the creation of a lab environment complete with security tooling and logging best practices

ansible vagrant packer powershell terraform detection dfir vagrantfile sysmon osquery information-security lab-environment detectionlab dfir-automation

Updated Oct 22, 2022
HTML

OTRF / ThreatHunter-Playbook

Star

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

dfir sysmon threat-hunting hunting hunter mitre hypothesis hunting-campaigns mitre-attack-db

Updated Sep 14, 2022
Python

Security-Onion-Solutions / security-onion

Star

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

dfir ids intrusion-detection network-security-monitoring log-management nsm hunting

Updated Apr 16, 2021

TheHive-Project / TheHive

Star

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Updated Sep 13, 2022
Scala

Neo23x0 / Loki

Star

Loki - Simple IOC and Incident Response Scanner

python ioc scanner signature hash dfir antivirus yara yara-rules otx

Updated Oct 10, 2022
Python

cugu / awesome-forensics

Star

A curated list of awesome forensic analysis tools and resources

open-source dfir free digital-forensics computer-forensics forensic-analysis

Updated Oct 12, 2022

JPCERTCC / LogonTracer

Star

Investigate malicious Windows logon by visualizing and analyzing Windows event log

visualization javascript security active-directory dfir event-log python-3 blueteam

Updated Dec 19, 2021
Python

google / timesketch

Star

Collaborative forensic timeline analysis

security analysis timeline forensics dfir

Updated Nov 3, 2022
Python

olafhartong / sysmon-modular

Sponsor

Star

A repository of sysmon configuration modules

modular dfir sysmon threat-hunting security-tools mitre-attack

Updated Oct 3, 2022
PowerShell

Neo23x0 / signature-base

Star

YARA signature and IOC database for my scanners and tools

ioc scanner anti-virus signature hash dfir threat-hunting yara yara-rules threat-intelligence

Updated Nov 3, 2022
YARA

sbousseaden / EVTX-ATTACK-SAMPLES

Star

Windows Events Attack Samples

dfir dataset threat-hunting winlogbeat mitre-attack evtx windows-security detection-engineering

Updated Aug 7, 2022
HTML

WithSecureLabs / chainsaw

Star

Rapidly Search and Hunt through Windows Forensic Artefacts

windows rust security attack detection logs forensics dfir threat-hunting sigma blueteam chainsaw countercept

Updated Oct 20, 2022
Rust

api0cradle / LOLBAS

Star

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

dfir blueteam redteam purpleteam lolbins lolscripts living-off-the-land

Updated Dec 10, 2018
XSLT

maliceio / malice

Star

VirusTotal Wanna Be - Now with 100% more Hipster

docker golang elasticsearch cloud malware dfir cybersecurity infosec antivirus malware-analysis malware-research virustotal malice

Updated Dec 11, 2021
Go

mattnotmax / cyberchef-recipes

Star

A list of cyber-chef recipes and curated links

incident-response malware regular-expression dfir data-manipulation cyberchef cyberchef-recipes

Updated Oct 16, 2022

yeti-platform / yeti

Star

Your Everyday Threat Intelligence

intelligence enrichment dfir infosec threat-hunting threat-sharing threatintel

Updated Sep 8, 2022
Python

Improve this page

Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."

Learn more