834 Open source projects that are alternatives of or similar to Memlabs

No description or website provided.

Provides various Windows Server Active Directory (AD) security-focused reports.

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

Carve file metadata from NTFS index ($I30) attributes

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Robot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.

Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)

Everything related to Linux Forensics

Game of Thrones hacking CTF (Capture the flag)

ThePhish: an automated phishing email analysis tool

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.

Live system forensic collector

An Incident Response tool to extract console command history and screen output buffer

This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices

#ThreatHunting #DFIR #Malware #Detection Mind Maps

Web browser forensics for Google Chrome/Chromium

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.

Automation and Scaling of Digital Forensics Tools

You didn't think I'd go and leave the blue team out, right?

My solutions to the 2020 NSA Codebreaker Challenge

🔑 Hash type identifier (CLI & lib)

Trace ScriptBlock execution for powershell v2

Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.

System Management RAM analysis tool

A list of free and open forensics analysis tools and other resources

Timeline of Active Directory changes with replication metadata

Cortex Analyzers Repository

JerseyCTF 2021

DFIRTrack - The Incident Response Tracking Application

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

The Python implementation of the AFF4 standard.

Query and report user logons relations from MS Windows Security Events

Dumps all of the Key/Value pairs from a LevelDB database

Catalyst is an open source SOAR system that helps to automate alert handling and incident response processes

Cortex: a Powerful Observable Analysis and Active Response Engine

Minimalistic DNS logging tool

CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library

Information Security Library

Python 3 Script to parse out iTunes backups

PowerShell module for Office 365 and Azure log collection

Python script to decode common encoded PowerShell scripts

A curated list of tools for incident response

Useful tools for CTF competitions

A platform to develop, run and administer CTF competitions. The online echoCTF.RED platform user interfaces and codebase

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

[180+ scripts] There are a few genuine gems in there. And a lot of spaghetti code. Most of these scripts were for solving CTF's. If you googles something for a CTF and landed here look at the scripts they're all fairly malleable. Sorry for the shitty naming conventions (not really). If you are a recruiter stop. I wont be able to rewrite half thi…

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system

Digital Forensics Investigation Platform

A tool for forensic file system reconstruction.

澳門網絡安全暨奪旗競賽協會(Macau Cyber Security and Capture The Flag Association)MOCSCTF/MOCTF

Docker image for hacking

Truehunter

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Documentation of TheHive

MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR

incident response scripts

macOS Artifact Parsing Tool

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.