raven: Advanced Cyber Threat Map
Raven Raven – Advanced Cyber Threat Map (Simplified, customizable and responsive. It uses D3.js with TOPO JSON, has 247 countries, ~100,000 cities, and can be used in an isolated environment without...
Category: Forensics
SentryPeer v3.0.1 releases: distributed list of bad IP addresses and phone numbers
SentryPeer A distributed list of bad IP addresses and phone numbers was collected via a SIP Honeypot. This is basically a fraud detection tool. It lets bad actors try to...
CrowdStrike Reporting Tool for Azure
CrowdStrike Reporting Tool for Azure (CRT) This tool queries the following configurations in the Azure AD/O365 tenant which can shed light on hard-to-find permissions and configuration settings in order to...
Digital Forensics Lab: Free hands-on digital forensics labs for students and faculty
Digital Forensics Lab & Shared Cyber Forensic Intelligence Repository Features of Repository Hands-on Digital Forensics Labs: designed for Students and Faculty Linux-based lab: All labs are purely based on Kali Linux...
Atomic Threat Coverage: combat threats based on MITRE’s ATT&CK
Atomic Threat Coverage Actionable analytics designed to combat threats based on MITRE’s ATT&CK. Atomic Threat Coverage is a tool which allows you to automatically generate actionable analytics, designed to combat threats...
kit_hunter: basic phishing kit scanner for dedicated and semi-dedicated hosting
Kit Hunter: A basic phishing kit detection tool Kit Hunter is a personal project to learn Python and a basic scanning tool that will search directories and locate phishing kits...
riotpot: Resilient IoT and Operational Technology Honeypot
RIoTPot RIoTPot is an interoperable medium interaction honeypot, primarily focused on the emulation of IoT and OT protocols, although, it is also capable of emulating other services. These services are...
ad-honeypot-autodeploy: RDP Honeypot fully automatically
ad-honeypot-autodeploy Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically. Runs on self-hosted virtualization using libvirt with QEMU/KVM (but it can be customized easily for cloud-based solutions). Used for painlessly...
AzureHunter v1.6 releases: Cloud Forensics Powershell module
AzureHunter A Powershell module to run threat hunting playbooks on data from Azure and O365 for Cloud Forensics purposes. What is the UnifiedAuditLog? The unified audit log contains user, group,...
Android Quick Forensics v1.6 releases: quickly gathering forensic evidence from Android devices
androidqf androidqf (Android Quick Forensics) is a portable tool to simplify the acquisition of relevant forensic data from Android devices. It is the successor of Snoopdroid, re-written in Go and leveraging...
ntfstool v1.5 releases: Forensics tool for NTFS
ntfstool NTFSTool is a forensic tool to play with disks and NTFS volumes. It supports reading partition info (mbr, partition table, vbr) but also information on bitlocker encrypted partition (fve)....
Linux-CatScale IR Collection Script v1.3.2 releases
Linux-CatScale IR Collection Script Linux CatScale is a bash script that uses live-of-the-land tools to collect extensive data from Linux-based hosts. The data aims to help DFIR professionals triage and...
networkit: growing open-source toolkit for large-scale network analysis
NetworKit NetworKit is an open-source tool suite for high-performance network analysis. Its aim is to provide tools for the analysis of large networks in the size range from thousands to billions...
fapro v0.65 releases: Free, Cross-platform, Single-file mass network protocol server simulator
FaPro FaPro is a Fake Protocol Server tool, Can easily start or stop multiple network services. The goal is to support as many protocols as possible, and support as many...
nfstream v6.5.3 releases: Flexible Network Data Analytics Framework
NFStream NFStream is a Python framework providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building...
