dfir topic

List dfir repositories

awesome-incident-response

7.2k
Stars
1.5k
Forks
Watchers

A curated list of tools for incident response

verified publisher icon meirwah

Oriana

175
Stars
32
Forks
Watchers

Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identif...

verified publisher icon mvelazc0

iTunes_Backup_Reader

165
Stars
44
Forks
Watchers

Python 3 Script to parse out iTunes backups

verified publisher icon jfarley248

MEAT

130
Stars
18
Forks
Watchers

This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices

verified publisher icon jfarley248

cacador

130
Stars
23
Forks
Watchers

Indicator Extractor

verified publisher icon sroberts

malcom

1.1k
Stars
214
Forks
Watchers

Malcom - Malware Communications Analyzer

verified publisher icon tomchop

fastfinder

221
Stars
27
Forks
Watchers

Incident Response - Fast suspicious file finder

verified publisher icon codeyourweb

truehunter

30
Stars
19
Forks
Watchers

Truehunter

verified publisher icon adoreste

decwindbx

30
Stars
5
Forks
Watchers

A sort of a toolkit to decrypt Dropbox Windows DBX files

verified publisher icon dfirfpi

incidents

62
Stars
7
Forks
Watchers

Please use https://github.com/veeral-patel/true-positive instead

verified publisher icon veeral-patel