-
-
rivendell Public
Comprehensive DFIR platform that combines remote acquisition, automated analysis, AI-powered investigation, and cloud forensics capabilities.
-
-
-
-
gandalf Public archive
Collection of acquisition scripts for collecting digital forensic artefacts
-
elrond Public archive
Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
-
ancestree Public
Cross-platform, simple and free Family Tree application.
Python UpdatedNov 17, 2025 -
MITRESaw Public
Obtain actionable identifiers from MITRE ATT&CK framework based on provided parameters.
-
-
AudiobookConstructor Public
Maker audiobooks from existing individual audio files
Python MIT License UpdatedOct 6, 2025 -
loland Public
Python script to obtain a consolidated list of Living of the Land (LOL) Drivers.
Python MIT License UpdatedApr 2, 2025 -
cuaca Public
Anomali API script for querying Indicators of Compromise
MIT License UpdatedFeb 2, 2025 -
snapmap Public
Run the quickest, most comprehensive nmap scan against a subnet range
Python MIT License UpdatedFeb 2, 2025 -
-
-
configmykali Public
Collection of configuration scripts for setting up Kali
Shell MIT License UpdatedFeb 2, 2025 -
bruce Public
Python script for outputting PCAPs as JSON as well as extracting attachments within the traffic stream
-
ATTACK4SOC Public
Forked from quitehacker/MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOCThe Enhanced MITRE ATT&CKยฎ Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simplifies tracking of security readiness against ATT&CKยฎ tacticโฆ
GNU General Public License v3.0 UpdatedDec 30, 2024 -
-
asn Public
Forked from nitefood/asnASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
Shell MIT License UpdatedJul 18, 2024 -
windows-event-id-list-csv Public
Forked from PerryvandenHondel/windows-event-id-list-csvWindows Event ID list in CSV format
Apache License 2.0 UpdatedJul 9, 2024 -
LOOBins Public
Forked from infosecB/LOOBinsLiving Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in macOS binaries and how they can be used by threat actors for malicious purposes.
Python GNU General Public License v3.0 UpdatedMay 10, 2023 -
-
Windows-Symbol-Tables Public
Forked from JPCERTCC/Windows-Symbol-TablesWindows symbol tables for Volatility 3
Python UpdatedJul 27, 2022 -
KStrike Public
Forked from brimorlabs/KStrikeStand-alone parser for User Access Logging from Server 2012 and newer systems
Python Other UpdatedDec 17, 2021 -
-
evt2json Public
Convert EVT and EVTX files to JSON for easier SIEM tool ingestion
-
dwarf2json Public
Forked from volatilityfoundation/dwarf2jsonconvert ELF/DWARF symbol and type information into vol3's intermediate JSON
Go Other UpdatedMar 10, 2021 -
theredactor Public
Python script to redact Personally Identifiable Information from selection of common files.
Python MIT License UpdatedJan 2, 2021
{{ message }}