DARKSURGEON
DARKSURGEON copied to clipboard
cryps1s
DARKSURGEON is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense.
**Describe the bug** I forgot to enable the osquery scheduled queries. **Additional context** Need to update the powershell script to appropriately copy over the osquery.flags and osquery.conf files, ensure that...
**What tool would you like added?** Mandiant redline **What does this tool do?** Memory/system analysis with automated IOC/IOA checking **How does this tool improve DARKSURGEON?** Useful for IR workflows **Dependencies...
**What tool would you like added?** Network Miner **What does this tool do?** GUI for analyzing network traffic/pcaps **How does this tool improve DARKSURGEON?** Network analysis is weak **Dependencies and...
**What tool would you like added?** Maltego **What does this tool do?** Visualization and graph searching **How does this tool improve DARKSURGEON?** Needs a good visualization tool **Dependencies and configuration.**...
**What tool would you like added?** Bulkextractor **What does this tool do?** bulk_extractor is a computer forensics tool that scans a disk image, a file, or a directory of files...
**Is your feature request related to a problem? Please describe.** Yes. WSL is installed, but no WSL environment is configured or installed by default. **Describe the solution you'd like** Automatically...
**What tool would you like added?** Add visual studio community **What does this tool do?** Windows build environment **How does this tool improve DARKSURGEON?** Needed for some RE and development...
**Is your feature request related to a problem? Please describe.** Yes. The build pipeline for this project is painful. **Describe the solution you'd like** Plug new builds into packer.net and...
**What tool would you like added?** Process Hacker **What does this tool do?** Process monitoring and manipulation tool. **How does this tool improve DARKSURGEON?** Additional functionality for dynamic malware analysis....
**What tool would you like added?** Add Google's Timesketch (either directly or potentially in a docker container) **What does this tool do?** Collaboration for forensic/incident timelines. **How does this tool...