Open source incident management and response platform.

An implementation of PSExec in C#

RawWrite for Windows/dd for Windows

A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host.

Control file access with file system filter driver, prevent unauthorized user or process from accessing your sensitive files

Ransomware detection application for Windows using Windows Minifilter driver

A YARA-integrated process denial framework for Windows

VirusTotal Wanna Be - Now with 100% more Hipster

forensics Mac: Dump ram OSX and collect artefact (Forensic TOOL)

LKRG Exploit Detection kernel module (forked from https://bitbucket.org/Adam_pi3/lkrg-main)

A sandboxed JavaScript interpreter in JavaScript.

A JavaScript interpreter in Python, built for embedding JavaScript.

rename

Endpoint monitoring stack.

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities

This is the list of all rootkits found so far on github and othersites.

Lnk Explorer Command line edition!!

Lnk file parser

A C# Library to read from raw sectors of a disk

A C# Library to work with the Win32 DeviceIOControl method

This program detects all present and future ransomware in Windows file shares or local drives for Windows file servers. I created this windows service to aide system administrators not average users.

Modules for expansion services, import and export in MISP

My Dirty Scriptss ..!!!!! Pentest , OSINT , Python ,, Trainings

A curated list of tools for incident response

A forensic evidence collection & analysis toolkit for OS X

RIOT - The friendly OS for IoT

Malware samples from honeypots

Dockerize BIND DNS server with webmin for DNS administration

Remote execution, like PsExec