This repository provides sample templates for security playbooks against...
DFIRTrack - The Incident Response Tracking Application
FCL (Fileless Command Lines) - Known command lines of fileless malicious...
A Windows Batch script and a Unix Bash script to comprehensively collect...
Information gathering & website reconnaissance | https://phishstats.info/
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps...
Cortex Analyzers Repository
Collection of forensic tools
Plugins for Wazuh Dashboard
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-...
Wazuh - Ruleset
The Azure Active Directory Incident Response PowerShell module provides ...
Documentation of TheHive
Forensics artefact collection tool for systems running Microsoft Windows
Awesome list of keywords and artifacts for Threat Hunting sessions