Loki by Neo23x0

Loki - Simple IOC and YARA Scanner

created at Jan. 18, 2015, 8:39 a.m.

Python

187 +0

3,254 +0

574 -1

GitHub
awesome-forensics by cugu

A curated list of awesome forensic analysis tools and resources

created at March 29, 2016, 8:54 p.m.

Unknown languages

167 +0

3,638 +23

593 -1

GitHub
HELK by Cyb3rWard0g

The Hunting ELK

created at March 14, 2017, 7:14 p.m.

Jupyter Notebook

215 -1

3,710 +5

673 +0

GitHub
grr by google

GRR Rapid Response: remote live forensics for incident response

created at Dec. 4, 2013, 12:17 a.m.

Python

316 +0

4,667 +6

760 -1

GitHub
ThreatHunter-Playbook by OTRF

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

created at March 28, 2017, 3:07 a.m.

Python

369 -1

3,884 +7

796 +0

GitHub
flare-vm by mandiant

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

created at July 5, 2017, 9:17 p.m.

PowerShell

200 +2

5,948 +32

873 +2

GitHub
caldera by mitre

Automated Adversary Emulation Platform

created at Nov. 29, 2017, 1:25 a.m.

Python

166 +0

5,241 +17

1,018 +3

GitHub
cutter by rizinorg

Free and Open Source Reverse Engineering Platform powered by rizin

created at Sept. 25, 2017, 9:50 a.m.

C++

300 +0

15,171 +35

1,133 +4

GitHub
volatility by volatilityfoundation

An advanced memory forensics framework

created at April 24, 2014, 3:45 p.m.

Python

307 -1

6,973 +17

1,250 +1

GitHub
sysmon-config by SwiftOnSecurity

Sysmon configuration file template with default high-quality event tracing

created at Feb. 1, 2017, 6:49 p.m.

Unknown languages

357 +0

4,601 +7

1,674 +3

GitHub
cuckoo by cuckoosandbox

Cuckoo Sandbox is an automated dynamic malware analysis system

created at Sept. 7, 2011, 12:12 p.m.

JavaScript

437 +2

5,433 +5

1,689 +0

GitHub
sigma by SigmaHQ

Main Sigma Rule Repository

created at Dec. 24, 2016, 9:48 a.m.

Python

328 +1

7,723 +23

2,103 +0

GitHub
atomic-red-team by redcanaryco

Small and highly portable detection tests based on MITRE's ATT&CK.

created at Oct. 11, 2017, 5:23 p.m.

C

347 +0

9,169 +33

2,682 +4

GitHub
radare2 by radareorg

UNIX-like reverse engineering framework and command-line toolset

created at July 3, 2012, 7:42 a.m.

C

483 +0

19,752 +26

2,942 +3

GitHub
ghidra by NationalSecurityAgency

Ghidra is a software reverse engineering (SRE) framework

created at March 1, 2019, 3:27 a.m.

Java

1,024 -2

48,170 +124

5,579 +15

GitHub
Most stars Fewest stars Most forks Fewest forks Most watchers Fewest watchers Recently created Least recently created Recently updated Least recently updated Most repositories Fewest repositories
All languages 135 Python 60 JavaScript 11 Unknown languages 10 Go 9 PowerShell 9 C 5 C++ 5 Rust 5 Shell 5 C# 4 HTML 4 Batchfile 2 AutoIt 1 Dockerfile 1 Java 1 Jupyter Notebook 1 PHP 1 Perl 1