sysmon-config by SwiftOnSecurity

Sysmon configuration file template with default high-quality event tracing

updated at Nov. 17, 2024, 3:30 p.m.

Unknown languages

356 +0

4,808 +9

1,707 -1

GitHub
security-apis by deralexxx

A collective list of public APIs for use in security. Contributions welcome

updated at Nov. 17, 2024, 1:21 p.m.

Unknown languages

58 +0

889 +3

134 +0

GitHub
awesome-forensics by cugu

⭐️ A curated list of awesome forensic analysis tools and resources

updated at Nov. 17, 2024, 10:08 a.m.

Unknown languages

174 +0

3,995 +15

623 +0

GitHub
security-onion by Security-Onion-Solutions

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

updated at Nov. 16, 2024, 8:33 a.m.

Unknown languages

301 +0

3,076 +3

522 +1

GitHub
dissect by fox-it

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (part of NCC Group).

updated at Nov. 15, 2024, 10:36 a.m.

Unknown languages

22 +0

924 +3

65 +1

GitHub
IRM by certsocietegenerale

Incident Response Methodologies 2022

updated at Nov. 13, 2024, 7:25 p.m.

Unknown languages

44 +0

978 +4

160 +1

GitHub
awesome-event-ids by stuhli

Collection of Event ID ressources useful for Digital Forensics and Incident Response

updated at Nov. 11, 2024, 12:25 a.m.

Unknown languages

24 +0

586 +2

85 +0

GitHub
RedHunt-OS by redhuntlabs

Virtual Machine for Adversary Emulation and Threat Hunting

updated at Nov. 6, 2024, 3:15 a.m.

Unknown languages

84 +0

1,247 +0

193 +0

GitHub
gsvsoc_cirt-playbook-battle-cards by guardsight

Cyber Incident Response Team Playbook Battle Cards

updated at Oct. 21, 2024, 2:10 p.m.

Unknown languages

17 +0

360 +0

67 +1

GitHub