Investigate suspicious activity by visualizing Sysmon's event log
updated at May 31, 2024, 11:57 a.m.
Binary analysis and management framework
updated at May 31, 2024, 10:41 a.m.
A Python DNS crawler to find identical domain names under different TLDs.
updated at May 30, 2024, 8:42 a.m.
A collective list of public APIs for use in security. Contributions welcome
updated at May 29, 2024, 7:31 a.m.
inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
updated at May 27, 2024, 11:51 a.m.
A Python library and command line tools to provide interactive log visualization.
updated at May 27, 2024, 7:14 a.m.
Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com
updated at May 24, 2024, 10:23 p.m.
PagerDuty's Incident Response Documentation.
updated at May 22, 2024, 1:30 p.m.
"Evolving AppCompat/AmCache data analysis beyond grep"
updated at May 16, 2024, 1:39 p.m.
CLI program for automating the setup, configuration, and use of cybersecurity solutions
updated at May 14, 2024, 9:23 p.m.
A modular Python application to pull intelligence about malicious files
updated at May 14, 2024, 12:11 p.m.
Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
updated at May 10, 2024, 9:09 a.m.
A Python library to interface with a cuckoo-modified instance
updated at May 7, 2024, 12:53 p.m.