dfir

Here are 480 public repositories matching this topic...

toniblyx / my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

security auditing cloud aws-lambda incident-response iam dfir cloudtrail aws-infrastructure security-tools aws-inventory

Updated May 12, 2023
Shell

meirwah / awesome-incident-response

Star

A curated list of tools for incident response

security list awesome incident-response dfir cybersecurity awesome-list incident-response-tooling

Updated May 24, 2023

LOLBAS-Project / LOLBAS

Star

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

dfir blueteam redteam purpleteam lolbins lolscripts living-off-the-land

Updated Jun 15, 2023
XSLT

zeek / zeek

Star

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

security pcap dfir bro network-monitoring nsm zeek

Updated Jun 16, 2023
C++

clong / DetectionLab

Sponsor

Star

Automate the creation of a lab environment complete with security tooling and logging best practices

ansible vagrant packer powershell terraform detection dfir vagrantfile sysmon osquery information-security lab-environment detectionlab dfir-automation

Updated Mar 27, 2023
HTML

OTRF / ThreatHunter-Playbook

Star

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

dfir sysmon threat-hunting hunting hunter mitre hypothesis hunting-campaigns mitre-attack-db

Updated May 23, 2023
Python

Security-Onion-Solutions / security-onion

Star

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

dfir ids intrusion-detection network-security-monitoring log-management nsm hunting

Updated Apr 16, 2021

cugu / awesome-forensics

Star

A curated list of awesome forensic analysis tools and resources

open-source dfir free digital-forensics computer-forensics forensic-analysis

Updated May 26, 2023

TheHive-Project / TheHive

Star

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Updated Dec 5, 2022
Scala

Neo23x0 / Loki

Star

Loki - Simple IOC and YARA Scanner

python ioc scanner signature hash dfir antivirus yara yara-rules otx

Updated May 18, 2023
Python

intelowlproject / IntelOwl

Sponsor

Star

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Updated Jun 15, 2023
Python

JPCERTCC / LogonTracer

Star

Investigate malicious Windows logon by visualizing and analyzing Windows event log

visualization javascript security active-directory dfir event-log python-3 blueteam

Updated Dec 27, 2022
Python

google / timesketch

Star

Collaborative forensic timeline analysis

security analysis timeline forensics dfir

Updated Jun 16, 2023
Python

olafhartong / sysmon-modular

Sponsor

Star

A repository of sysmon configuration modules

modular dfir sysmon threat-hunting security-tools mitre-attack

Updated Jun 4, 2023
PowerShell

WithSecureLabs / chainsaw

Star

Rapidly Search and Hunt through Windows Forensic Artefacts

windows rust security attack detection logs forensics dfir threat-hunting sigma blueteam chainsaw countercept

Updated Jun 12, 2023
Rust

Neo23x0 / signature-base

Star

YARA signature and IOC database for my scanners and tools

ioc scanner anti-virus signature hash dfir threat-hunting yara yara-rules threat-intelligence

Updated Jun 16, 2023
YARA

sbousseaden / EVTX-ATTACK-SAMPLES

Star

Windows Events Attack Samples

dfir dataset threat-hunting winlogbeat mitre-attack evtx windows-security detection-engineering

Updated Jan 24, 2023
HTML

mattnotmax / cyberchef-recipes

Star

A list of cyber-chef recipes and curated links

incident-response malware regular-expression dfir data-manipulation cyberchef cyberchef-recipes

Updated Nov 6, 2022

api0cradle / LOLBAS

Star

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

dfir blueteam redteam purpleteam lolbins lolscripts living-off-the-land

Updated Dec 10, 2018
XSLT

maliceio / malice

Star

VirusTotal Wanna Be - Now with 100% more Hipster

docker golang elasticsearch cloud malware dfir cybersecurity infosec antivirus malware-analysis malware-research virustotal malice

Updated Apr 3, 2023
Go

Improve this page

Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."

Learn more