6 results found Sort:

tclahr
uac tclahr
128
828
apache-2.0
27
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD an...
aix dfir esxi linux macos shell netbsd script triage freebsd openbsd solaris security terminal collector forensics netscaler live-response incident-response computer-forensics
Created 2020-01-08
1,097 commits to main branch, last one 2 months ago
evild3ad
MemProcFS-Analyzer evild3ad
59
555
gpl-3.0
22
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
dfir memprocfs powershell live-response memory-forensics digital-forensics incident-response
Created 2021-05-15
143 commits to main branch, last one 27 days ago
cyb3rmik3
MDE-DFIR-Resources cyb3rmik3
39
361
mit
11
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
kql mde dfir kusto microsoft resources kusto-query curated-list live-response digital-forensics incident-response curated-collections kusto-query-language microsoft-defender-for-endpoint digital-forensics-incident-response
Created 2023-11-01
53 commits to main branch, last one 11 days ago
evild3ad
Collect-MemoryDump evild3ad
29
223
gpl-3.0
6
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
dfir powershell live-response memory-forensics digital-forensics incident-response memory-acquisition
Created 2022-07-14
32 commits to main branch, last one 9 months ago
lawndoc
mediator lawndoc
15
98
agpl-3.0
4
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
python plugins python3 handlers python-3 red-team pentesting red-teaming live-response plugin-system python-script reverse-shell reverse-shells security-tools pentesting-tools incident-response socket-programming end-to-end-encryption incident-response-tooling
Created 2021-01-08
146 commits to main branch, last one about a year ago
op7ic
unix_collector op7ic
5
33
gpl-3.0
2
unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and...
dfir esxi unix linux posix script triage freebsd openbsd solaris blueteam security forensics live-response dfir-automation forensics-tools incident-response computer-forensics
Created 2022-03-09
149 commits to main branch, last one 5 days ago