Category: Forensics


Cortex 3.1.6 released: Powerful Observable Analysis Engine

Cortex tries to solve a common problem frequently encountered by SOCs, CSIRTs and security researchers in the course of threat intelligence, digital forensics, and incident response: how to analyze observables they have collected, at scale, by querying a single...

Acquire Volatile Memory for Linux

AVML v0.7 releases: Acquire Volatile Memory for Linux

Acquire Volatile Memory for Linux (AVML) AVML is an X86_64 userland volatile memory acquisition tool written in Rust, intended to be deployed as a static binary. AVML can be used to acquire memory without knowing...


fastnetmon v1.2.2 releases: very fast DDoS analyzer

FastNetMon – A high-performance DoS/DDoS load analyzer built on top of multiple packet capture engines (NetFlow, IPFIX, sFLOW, SnabbSwitch, netmap, PF_RING, PCAP). What can we do? We can detect hosts in our networks sending...