There are 1 repository under forensicartifacts topic.
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
📇 Digital Forensics Artifact Repository (forensicanalysis edition)
Sigma detection rules for hunting with the threathunting-keywords project
Analysis or research tools for digital forensics
Reverse Engineering the Tabstate files for Windows Notepad
Reverse Engineering the Windowstate files for Windows Notepad