dfir
Here are 561 public repositories matching this topic...
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
-
Updated
Jun 9, 2024 - Python
Harness the power of Splunk for your investigations
-
Updated
Jun 9, 2024 - Shell
yara detection rules for hunting with the threathunting-keywords project
-
Updated
Jun 9, 2024 - YARA
Forensic Artifacts Collecting Toolkit
-
Updated
Jun 8, 2024 - Go
A curated list of tools for incident response. With repository stars⭐ and forks🍴
-
Updated
Jun 8, 2024
Automation and Scaling of Digital Forensics Tools
-
Updated
Jun 8, 2024 - Python
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
-
Updated
Jun 8, 2024 - Rust
Helm charts for running open source digital forensic tools in Kubernetes
-
Updated
Jun 7, 2024 - Smarty
(Sometimes partial) Python re-implementations of the technologies involved in reading various data sources in Chrome-esque applications.
-
Updated
Jun 7, 2024 - Python
🏴☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉
-
Updated
Jun 7, 2024 - Python
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
-
Updated
Jun 6, 2024 - XSLT
Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
-
Updated
Jun 6, 2024 - Python
Improve this page
Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."