velociraptor by Velocidex

Digging Deeper....

updated at June 8, 2024, 10:14 p.m.

73 +2

2,737 +9

459 +3

fleet by fleetdm

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

updated at June 8, 2024, 6:33 p.m.

30 -1

2,263 +19

360 +0

flightsim by alphasoc

A utility to safely generate malicious network traffic patterns and evaluate controls.

updated at June 7, 2024, 6:01 p.m.

35 +0

1,207 +8

128 +0

catalyst by SecurityBrewery

Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes

updated at June 7, 2024, 12:03 p.m.

5 +0

282 +3

35 +1

fibratus by rabbitstack

A modern tool for Windows kernel exploration and tracing with a focus on security

updated at June 7, 2024, 3:20 a.m.

71 +0

2,096 +3

184 +1

artifactcollector by forensicanalysis

🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system

updated at May 30, 2024, 11:53 a.m.

9 +0

246 +0

19 +0

stenographer by google

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com

updated at May 24, 2024, 10:23 p.m.

104 +0

1,789 +0

234 +0

spyre by spyre-project

simple YARA-based IOC scanner

updated at May 24, 2024, 4:28 p.m.

12 +0

160 +0

27 +0

nightHawkResponse by biggiesmallsAG

Incident Response Forensic Framework

updated at April 27, 2024, 8:49 a.m.

82 +0

596 +0

139 +0