There are 5 repositories under digital-forensics-incident-response topic.
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
A curated list of awesome Memory Forensics for DFIR
CLI tools for forensic investigation of Windows artifacts
Advanced Bash script designed for conducting digital forensics on Linux systems
Simple Imager has been created for performing live acquisition of Windows based systems in a forensically sound manner
A collection of digital forensics tools for verification, investigations, diagnostics, software, libraries, learning tutorials, frameworks, academic and practical resources in Cybersecurity
KIISC Digital Forensics Challenge 2021 - DogeCoin's WriteUp
This repo is all about Blue teamming and CyberDefenders Write-up for their DFIR challenges
The DFIR.Science research blog about digital forensic investigation.
My digital forensics notebook
KIISC Digital Forensics Challenge 2022 - ISEGYE_IDOL's WriteUp
Automate forensic traige package collection and evidence parsing with KAPE and Crowdstrike
Tools and Techniques for Digital Forensics and Incident Response
osquery CTI, DFIR
Making KAPE forensic artifact processing easier
Secure Readiness Storage
A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.
zeek network security monitoring NIDS HIDS
RELY (Name composed on project members Romy, Esther, Lucille and Yassir) is a python tool developed to help a Digital Forensics Triage procedure on some Microsoft Windows devices.
This script allows you to connect to a serial port and display incoming data in real-time. It also includes options to format, filter, and log the data.
Janus: malware analysis by memory comparison
ELK network visibility CTI DFIR
network security monitoring NIDS HIDS CTI DFIR
A quick java application designed to parse Microsoft ActiveSync logs for digital forensics professionals
This repo contain writeups for CyberDefenders.org challenges
A collection of Cyber Security related scripts, programs, and tools create for Microsoft Windows PowerShell.
GTracer : Google Sync and Backup Log Analyzer
graylog testing
multi arch os osquery travisci pipeline python virtuenv