303 Open source projects that are alternatives of or similar to Invoke Liveresponse

Recon Hunt Queries

Python API Client for TheHive

Imago is a python tool that extract digital evidences from images.

Catalyst is an open source SOAR system that helps to automate alert handling and incident response processes

Incident Response - Fast suspicious file finder

Educational, CTF-styled labs for individuals interested in Memory Forensics

Dumps all of the Key/Value pairs from a LevelDB database

Truehunter

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Smart OSINT collection of common IOC types

FAME Automates Malware Evaluation

VirusTotal Wanna Be - Now with 100% more Hipster

Bramble is a hacking Open source suite.

A repository for using osquery for incident detection and response

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Windows Recycle Bin analyser

Monzo's real-time incident response and reporting tool ⚡️

A role-playing game for incident management training

Open source incident management and response platform.

OPCDE Cybersecurity Conference Materials

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

A single file container/archive that can be reconstructed even after total loss of file system structures

Windows Events Attack Samples

Super timeline all the things

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.

SIAC is an enterprise SIEM built on open-source technology.

Wazuh - Project documentation

Your Everyday Threat Intelligence

Extract and aggregate threat intelligence.

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

OSINT Swiss Army Knife

A Linux packet crafting tool.

A repository of sysmon configuration modules

Parses $MFT from NTFS file systems

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.

incident response tool for iOS devices

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

TCP/IP packet demultiplexer. Download from:

Maltego CaseFile entities for information security investigations, malware analysis and incident response

SIFT

Malcom - Malware Communications Analyzer

Information gathering & website reconnaissance | https://phishstats.info/

Signature base for my scanner tools

Retrieve Intel AMT's Audit Log from a Linux machine without knowing the admin user's password.

A tool to help forensicate offline docker acquisitions

🕵️ A tool for Firefox profile analysis, data extraction, forensics and hardening

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

A port of Kaitai to the Hiew hex editor

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

Volatility plugin for extracts configuration data of known malware

CIRCL system forensic tools or a jumble of tools to support forensic

Android Apps, Roms and Platforms for Pentesting

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.