PSWinReporting PSWinReporting is a little PowerShell module that solves the problem of monitoring and reading Windows Events. It allows...
Forensics
What is Logging Made Easy (LME)? Logging Made Easy is a self-install tutorial for small organizations to...
logdissect Logdissect is a CLI utility and Python library for analyzing log files and other data. It...
Whatsapp Parser Toolset Updated: May 2022 WhatsApp Messenger Version 2.21.9.14 Whapa is a set of graphical forensic...
modDetective modDetective is a small Python tool that chronologizes files based on modification time in order to...
What is CDQR? The CDQR tool uses Plaso to parse disk images with specific parsers and create...
Real-time detection of high-risk attacks leveraging Kerberos and SMB This is a real-time detection tool for detecting...
Heralding Sometimes you just want a simple honeypot that collects credentials, nothing more. Heralding is that honeypot!...
DFIRTrack DFIRTrack (Digital Forensics and Incident Response Tracking application) is an open-source web application mainly based on...
StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on...
LogESP LogESP is a SIEM (Security Information and Event Management system) written in Python Django. It features...
pcap-ioc Python tool to extract potential IOCs from a pcap file using pyshark List of IOCs extracted :...
What is Cowrie Cowrie is a medium interaction SSH and Telnet honeypot designed to log brute force...
psad – Intrusion Detection with iptables Logs Introduction The Port Scan Attack Detector psad is a lightweight system daemon...
CyLR What is CyLR? The CyLR tool collects forensic artefacts from hosts with NTFS file systems quickly,...