APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
updated at May 20, 2024, 8:26 a.m.
Web browser forensics for Google Chrome/Chromium
updated at May 20, 2024, 1:19 a.m.
Digital Forensics Artifacts Knowledge Base
updated at May 18, 2024, 5:38 a.m.
StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
updated at May 17, 2024, 9:17 p.m.
"Evolving AppCompat/AmCache data analysis beyond grep"
updated at May 16, 2024, 1:39 p.m.
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
updated at May 16, 2024, 11:23 a.m.
$MFT directory tree reconstruction & FILE record info
updated at May 15, 2024, 9:58 p.m.
Command line utility and Python package to ease the (un)mounting of forensic disk images
updated at May 15, 2024, 10:31 a.m.
CLI program for automating the setup, configuration, and use of cybersecurity solutions
updated at May 14, 2024, 9:23 p.m.
A modular Python application to pull intelligence about malicious files
updated at May 14, 2024, 12:11 p.m.
DPS' Lightweight Investigation Notebook
updated at May 13, 2024, 1:35 p.m.
A machine learning tool that ranks strings based on their relevance for malware analysis.
updated at May 13, 2024, 6:36 a.m.
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
updated at May 11, 2024, 9:15 p.m.