Stars
The Single Sign-On Multi-Factor portal for web apps
Masstin: High-Speed DFIR Tool written in Rust and Graph Visualization in Neo4j for Comprehensive Lateral Movement Analysis
$MFT directory tree reconstruction & FILE record info
Analysis-oriented command line tool for remote execution and triage via EDRs API
A RESTful API to easily interact with the Wi-Fi enabled Divoom Pixoo devices.
This script is a tool designed to analyze and summarize the file extensions present in an input file.
Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
MFT and USN parser that allows direct extraction in filesystem timeline format (mactime), dump all resident files in the MFT in their original folder structure and run yara rules over them all.
Windows 10/11 hardening scripts
a python tool that checks for conformity with benchmarks
Simple command line tool to check for compliance against CIS Benchmarks
The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifa…
Powerful yet simple to use screenshot software 🖥️ 📸
A curated list of tools for incident response
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover su…
Allows you to quickly query a Windows machine for RAM artifacts
Double Commander is a free cross platform open source file manager with two panels side by side.
Rapidly Search and Hunt through Linux Forensics Artifacts
Sample queries for Advanced hunting in Microsoft 365 Defender
The missing REST and GraphQL API package for pfSense
Python bindings for https://github.com/omerbenamram/mft