Giters
Mike Cohen (scudette)

scudette

Geek Repo

265

followers

5

following

176

stars

Company:@Velocidex

Location:Australia

Github PK Tool:Github PK Tool

Organizations
aff4

Mike Cohen's repositories

velociraptor

Velociraptor hunts for evil...

Language:GoLicense:NOASSERTIONStargazers:5Issues:2Issues:0

awesome-incident-response

A curated list of tools for incident response

License:Apache-2.0Stargazers:2Issues:1Issues:0

Audit

Collection of Audit and Compliance related VQL artifacts

Language:GoStargazers:1Issues:0Issues:0

http-logging-proxy

Language:GoStargazers:1Issues:0Issues:0

sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

Language:C#License:Apache-2.0Stargazers:1Issues:0Issues:0

WinPmem

The multi-platform memory acquisition tool.

Language:CLicense:Apache-2.0Stargazers:1Issues:0Issues:0

aff4

The Advanced Forensic File Format. NOTE: This project has been split into C and Python projects and moved to https://github.com/aff4/pyaff4 and https://github.com/Velocidex/c-aff4

Language:C++License:Apache-2.0Stargazers:0Issues:1Issues:0

archiver

Language:GoLicense:MITStargazers:0Issues:0Issues:0

assert

A simple assertion library using Go generics

Language:GoLicense:MITStargazers:0Issues:0Issues:0

blackfriday

Blackfriday: a markdown processor for Go

Language:GoLicense:NOASSERTIONStargazers:0Issues:1Issues:0

DFIRArtifactMuseum

The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore.

Language:HTMLLicense:MITStargazers:0Issues:1Issues:0

eql

Language:PythonLicense:NOASSERTIONStargazers:0Issues:1Issues:0

eqllib

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

etw

Go library for ETW (Event Tracing for Windows) events processing

Language:GoLicense:MITStargazers:0Issues:1Issues:0

etw-providers-docs

Document ETW providers

Language:CStargazers:0Issues:1Issues:0

evtx

Golang Parser for Microsoft Event Logs

Language:GoLicense:Apache-2.0Stargazers:0Issues:1Issues:0

EVTX-ATTACK-SAMPLES

Windows Events Samples

Language:PowerShellStargazers:0Issues:0Issues:0

Extensible-Storage-Engine

Language:C++License:MITStargazers:0Issues:0Issues:0

fb-util-for-appx

Create .appx files.

Language:C++License:NOASSERTIONStargazers:0Issues:0Issues:0

go-ese

Go implementation of an Extensible Storage Engine parser

Language:GoLicense:Apache-2.0Stargazers:0Issues:0Issues:0

go-libaudit

go-libaudit is a library for communicating with the Linux Audit Framework.

Language:GoLicense:Apache-2.0Stargazers:0Issues:1Issues:0

impacket

Impacket is a collection of Python classes for working with network protocols.

License:NOASSERTIONStargazers:0Issues:0Issues:0

pywintrace

ETW Python Library

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

restic

Fast, secure, efficient backup program

Language:GoLicense:BSD-2-ClauseStargazers:0Issues:2Issues:0

RustyUsn

USN to JSON

Language:RustLicense:Apache-2.0Stargazers:0Issues:1Issues:0

sigma-go

A Go implementation and parser for Sigma rules.

Language:GoLicense:MITStargazers:0Issues:0Issues:0

tccprofile

Creates a TCC profile for new Privacy Payloads in macOS Mojave

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

ttlcache

An in-memory string-interface{} map with various expiration options for golang

Language:GoLicense:MITStargazers:0Issues:1Issues:0

velociraptor-docs

Documentation site for Velociraptor

Language:HTMLLicense:NOASSERTIONStargazers:0Issues:1Issues:0

winreg-kb

Windows Registry Knowledge Base

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0