velociraptor by Velocidex

Digging Deeper....

updated at Nov. 17, 2024, 1:35 p.m.

Go

75 +1

2,980 +11

492 +1

GitHub
artifactcollector by forensicanalysis

🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system

updated at Nov. 16, 2024, 10:08 p.m.

Go

8 +0

270 +2

21 +0

GitHub
fleet by fleetdm

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

updated at Nov. 16, 2024, 5:22 p.m.

Go

36 +2

3,119 +12

431 +4

GitHub
stenographer by google

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com

updated at Nov. 16, 2024, 8:38 a.m.

Go

101 +0

1,790 +2

238 +0

GitHub
fibratus by rabbitstack

Adversary tradecraft detection, protection, and hunting

updated at Nov. 16, 2024, 6:59 a.m.

Go

70 +0

2,210 +0

190 +0

GitHub
flightsim by alphasoc

A utility to safely generate malicious network traffic patterns and evaluate controls.

updated at Nov. 14, 2024, 10:47 a.m.

Go

35 +0

1,260 +3

132 +0

GitHub
nightHawkResponse by biggiesmallsAG

Incident Response Forensic Framework

updated at Oct. 23, 2024, 6:23 p.m.

Go

82 +0

598 +0

125 +0

GitHub
spyre by spyre-project

simple YARA-based IOC scanner

updated at Oct. 19, 2024, 2:56 p.m.

Go

12 +0

164 +0

27 +0

GitHub