There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Trawler
PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.LogBoost
Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, Domain, ASN, DNS and Threat Indicator matches.crackdown
Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.ThreatSim
Threat Simulator for Enterprise NetworksRetrievIR
PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.MACfuscator
Anti-Forensics Timeline Obfuscation UtilityWMIHunter
Asynchronous Remote Evidence Retrieval for rapid network-wide threat huntingvelociraptor-timeline-creator
VTC - Velociraptor Timeline CreatorRAID
Rapid Acqusition of Interesting DataExtCheck
File Signature Analysis ToolYARACheck
Update and use YARA rules from across the Internet against targeted files or directories.demo-react-flask-mui-auth
Example React app utilizing MaterialUI with Flask JWT-authed API backend.MalCommands
Documenting Suspicious Command LinesSimpleScanner
Basic XSS, SQLi and LFI Vulnerability ScannerLogonGrabber
Remote retrieval, filtering and analysis of Security.evtx logs for user activity analysis.WinGraph
Graph Visualizer for Windows Event LogsPyShares
SharpShares..but in Python!IOCFeed
NetPeek
TCP Port Scanner, FTP Anonymous Login Query, UDP FloodingPortCheck
Use TCP or UDP to check connection availability for remote hostsPacketSimulator
EyeOfTheBeholder
PMATCH
Recursive file-hasher and string-matcherPythonWebServer
QuickScan
Hunting for AbnormalitiesOutlooked-IOC
Tool for scanning an Outlook Inbox in order to discover Indicators of Compromise - intelligence dissemination/bulletins, *-ISAC Threads, etc,Love Open Source and this site? Check out how you can help us