Category: Forensics

Real Intelligence Threat Analytics

RITA v3.1 releases: Real Intelligence Threat Analytics

Real Intelligence Threat Analytics (RITA) is an open-source framework for network traffic analysis. The framework ingests Bro Logs, and currently supports the following analysis features: Beaconing Detection: Search for signs of beaconing behaviour in and...

recorded security events

mordor: provides pre-recorded security events

Mordor Gates The Mordor project provides pre-recorded security events generated by simulated adversarial techniques in the form of JavaScript Object Notation (JSON) files for easy consumption. The pre-recorded data is categorized by platforms, adversary...

rsyslog

rsyslog v8.1911 releases: a Rocket-fast SYStem for LOG processing

Rsyslog Rsyslog is a rocket-fast system for log processing. It offers high-performance, great security features, and a modular design. While it started as a regular syslogd, rsyslog has evolved into a kind of swiss army knife of logging,...

Acquire Volatile Memory for Linux

AVML v0.1.5 releases: Acquire Volatile Memory for Linux

Acquire Volatile Memory for Linux (AVML) AVML is an X86_64 userland volatile memory acquisition tool written in Rust, intended to be deployed as a static binary. AVML can be used to acquire memory without knowing...