Giters
DFIRJoe

DFIRJoe

Geek Repo

0

followers

0

following

83

stars

Github PK Tool:Github PK Tool

DFIRJoe's starred repositories

analyzeMFT

Language:PythonLicense:MITStargazers:423Issues:0Issues:0

fastfinder

Incident Response - Fast suspicious file finder

Language:GoLicense:MITStargazers:224Issues:0Issues:0

Sentinel-One-STAR-Rules-Threat-Hunts

SentinelOne STAR Rules

Stargazers:40Issues:0Issues:0

defender-detectionhistory-parser

A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.

Language:PythonLicense:GPL-3.0Stargazers:109Issues:0Issues:0

WELA

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)

Language:PowerShellLicense:GPL-3.0Stargazers:732Issues:0Issues:0

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Language:RustLicense:GPL-3.0Stargazers:2068Issues:0Issues:0

OpenSearch-Dashboards

📊 Open source visualization dashboards for OpenSearch.

Language:TypeScriptLicense:Apache-2.0Stargazers:1601Issues:0Issues:0

ripgrep

ripgrep recursively searches directories for a regex pattern while respecting your gitignore

Language:RustLicense:UnlicenseStargazers:46260Issues:0Issues:0

XstReader

Xst Reader is an open source viewer for Microsoft Outlook’s .ost and .pst files, written entirely in C#. To download an executable of the current version, go to the releases tab.

Language:C#License:MS-PLStargazers:479Issues:0Issues:0

gene

Signature engine for all your logs

Language:GoLicense:GPL-3.0Stargazers:154Issues:0Issues:0

Get-MiniTimeline

Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE

Language:PowerShellLicense:MITStargazers:24Issues:0Issues:0

velociraptor

Digging Deeper....

Language:GoLicense:NOASSERTIONStargazers:2781Issues:0Issues:0

KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.

License:MITStargazers:623Issues:0Issues:0

json2csv

Convert json to csv with column titles

Language:JavaScriptLicense:MITStargazers:2702Issues:0Issues:0

Detection-Ideas-Rules

Detection Ideas & Rules repository.

Stargazers:178Issues:0Issues:0

Zircolite

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Language:PythonStargazers:616Issues:0Issues:0

DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

Language:HTMLLicense:MITStargazers:4567Issues:0Issues:0

chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

Language:RustLicense:GPL-3.0Stargazers:2626Issues:0Issues:0

velociraptor-to-timesketch

Language:ShellLicense:MITStargazers:81Issues:0Issues:0

sof-elk

Configuration files for the SOF-ELK VM

Language:ShellLicense:GPL-3.0Stargazers:1458Issues:0Issues:0

sigma

Main Sigma Rule Repository

Language:PythonLicense:NOASSERTIONStargazers:7864Issues:0Issues:0

AllthingsTimesketch

This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.

Language:ShellLicense:Apache-2.0Stargazers:86Issues:0Issues:0

timesketch

Collaborative forensic timeline analysis

Language:PythonLicense:Apache-2.0Stargazers:2528Issues:0Issues:0