6 results found Sort:

tclahr
uac tclahr
130
853
apache-2.0
25
UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix...
aix dfir esxi linux macos shell netbsd script triage freebsd openbsd solaris security terminal collector forensics netscaler live-response incident-response computer-forensics
Created 2020-01-08
1,097 commits to main branch, last one 3 months ago
evild3ad
MemProcFS-Analyzer evild3ad
61
569
gpl-3.0
24
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
dfir memprocfs powershell live-response memory-forensics digital-forensics incident-response
Created 2021-05-15
143 commits to main branch, last one 2 months ago
cyb3rmik3
MDE-DFIR-Resources cyb3rmik3
40
384
mit
11
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
kql mde dfir kusto microsoft resources kusto-query curated-list live-response digital-forensics incident-response curated-collections kusto-query-language microsoft-defender-for-endpoint digital-forensics-incident-response
Created 2023-11-01
54 commits to main branch, last one about a month ago
evild3ad
Collect-MemoryDump evild3ad
29
223
gpl-3.0
6
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
dfir powershell live-response memory-forensics digital-forensics incident-response memory-acquisition
Created 2022-07-14
32 commits to main branch, last one 10 months ago
lawndoc
mediator lawndoc
15
99
agpl-3.0
4
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
python plugins python3 handlers python-3 red-team pentesting red-teaming live-response plugin-system python-script reverse-shell reverse-shells security-tools pentesting-tools incident-response socket-programming end-to-end-encryption incident-response-tooling
Created 2021-01-08
146 commits to main branch, last one about a year ago
op7ic
unix_collector op7ic
5
32
gpl-3.0
2
unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and...
dfir esxi unix linux posix script triage freebsd openbsd solaris blueteam security forensics live-response dfir-automation forensics-tools incident-response computer-forensics
Created 2022-03-09
150 commits to main branch, last one 28 days ago