Nothing Special   »   [go: up one dir, main page]
Skip to content
View pricklypete-dfir's full-sized avatar
1 follower · 26 following

Block or report pricklypete-dfir

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

17 stars written in Python
Clear filter

SigmaHQ / sigma

Main Sigma Rule Repository

Python 8,386 2,205 Updated Nov 20, 2024

mandiant / capa

The FLARE team's open-source tool to identify capabilities in executable files.

Python 4,883 563 Updated Nov 19, 2024

salesforce / ja3

JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

Python 2,775 291 Updated Oct 20, 2023

volatilityfoundation / volatility3

Volatility 3.0 development

Python 2,710 460 Updated Nov 18, 2024

xaitax / TotalRecall

This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.

Python 1,990 158 Updated Jun 8, 2024

TheresAFewConors / Sooty

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Python 1,351 209 Updated Sep 25, 2024

obsidianforensics / unfurl

Extract and Visualize Data from URLs using Unfurl

Python 610 59 Updated Nov 21, 2024

abrignoni / ALEAPP

Android Logs Events And Protobuf Parser

Python 528 113 Updated Nov 20, 2024

davidpany / WMI_Forensics

Python 294 55 Updated Aug 14, 2020

CrowdStrike / SuperMem

A python script developed to process Windows memory images based on triage type.

Python 258 41 Updated Nov 25, 2023

corelight / community-id-spec

An open standard for hashing network flows into identifiers, a.k.a "Community IDs".

Python 171 25 Updated Sep 23, 2024

philhagen / ip2geo

Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses

Python 98 26 Updated Jan 16, 2020

philhagen / timeshift

A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.

Python 19 5 Updated May 19, 2022

carbonblack / cbc-binary-toolkit

Binary Toolkit for the Carbon Black Cloud

Python 12 4 Updated Sep 24, 2024

DavFrank / ThreatHunter

Carbon Black ThreatHunter / VMware Carbon Black Enterprise EDR

Python 7 1 Updated May 12, 2020

kiddinn / l2t-tools

Automatically exported from code.google.com/p/l2t-tools

Python 7 1 Updated Mar 19, 2015

cbcommunity / cbc-proofpoint-malicious-file-detection

This is an integration with Proofpoint's TRAP product and VMware Carbon Black Cloud.

Python 2 1 Updated Oct 25, 2021