GitHunt — Discover GitHub Repositories

© 2026 GitHunt · tansuasici

897 results for “topic:dfir”

toniblyx/my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Shell9.4k1.6kUpdated 6 hours ago

auditingaws-infrastructureaws-inventoryaws-lambdacloud+6

meirwah/awesome-incident-response

A curated list of tools for incident response

8.9k1.7kUpdated 13 hours ago

awesomeawesome-listcybersecuritydfirincident-response+3

LOLBAS-Project/LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

XSLT8.4k1.1kUpdated 14 hours ago

blueteamdfirliving-off-the-landlolbinslolscripts+2

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

C++7.5k1.3kUpdated 15 hours ago

brodfirndrnetwork-monitoringnsm+3

cugu/awesome-forensics

⭐️ A curated list of awesome forensic analysis tools and resources

4.9k715Updated 16 hours ago

computer-forensicsdfirdigital-forensicsforensic-analysisfree+1

clong/DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

HTML4.9k1.0kUpdated 15 hours ago

ansibledetectiondetectionlabdfirdfir-automation+9

OTRF/ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Python4.5k851Updated 6 hours ago

dfirhunterhuntinghunting-campaignshypothesis+4

intelowlproject/IntelOwl

IntelOwl: manage your Threat Intelligence at scale

Python4.5k602Updated 9 hours ago

cyber-securitycyber-threat-intelligencecybersecuritydfirenrichment+15

TheHive-Project/TheHive

TheHive is a Collaborative Case Management Platform, now distributed as a commercial version

Scala3.9k682Updated 2 days ago

analyzerapicortexdfirdigital-forensics+13

Loki - Simple IOC and YARA Scanner

Python3.7k624Updated 2 days ago

antivirusdfirhashiocotx+5

WithSecureLabs/chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

Rust3.5k296Updated 17 hours ago

attackblueteamchainsawcounterceptdetection+8

google/timesketch

Collaborative forensic timeline analysis

Python3.3k646Updated 1 day ago

analysisdfirforensicssecuritytimeline

JPCERTCC/LogonTracer

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Python3.1k485Updated 20 hours ago

active-directoryblueteamdfirevent-logjavascript+3

Security-Onion-Solutions/security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

3.1k520Updated 5 days ago

dfirhuntingidsintrusion-detectionlog-management+2

Yamato-Security/hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Rust3.1k259Updated 17 hours ago

attackcybersecuritydetectiondfirevent+15

olafhartong/sysmon-modular

A repository of sysmon configuration modules

PowerShell3.0k642Updated 2 days ago

dfirmitre-attackmodularsecurity-toolssysmon+1

Neo23x0/signature-base

YARA signature and IOC database for my scanners and tools

YARA2.9k659Updated 16 hours ago

anti-virusdfirhashiocscanner+5

sbousseaden/EVTX-ATTACK-SAMPLES

Windows Events Attack Samples

HTML2.5k431Updated 20 hours ago

datasetdetection-engineeringdfirevtxmitre-attack+3

mikeroyal/Digital-Forensics-Guide

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Python2.5k271Updated 2 hours ago

alertingcyber-securitydetection-engineeringdfirdigital-forensics+15

mattnotmax/cyberchef-recipes

A list of cyber-chef recipes and curated links

2.2k275Updated 11 hours ago

cyberchefcyberchef-recipesdata-manipulationdfirincident-response+2

yeti-platform/yeti

Your Everyday Threat Intelligence

Python2.0k312Updated 1 day ago

dfirenrichmentinfosecintelligencethreat-hunting+2

maliceio/malice

VirusTotal Wanna Be - Now with 100% more Hipster

Go1.9k288Updated 14 hours ago

antiviruscloudcybersecuritydfirdocker+8

stuxnet999/MemLabs

Educational, CTF-styled labs for individuals interested in Memory Forensics

Shell1.8k220Updated 3 hours ago

ctfctf-challengescybersecuritydfirdigital-forensics+4

Purp1eW0lf/Blue-Team-Notes

You didn't think I'd go and leave the blue team out, right?

1.7k247Updated 16 hours ago

blueteamcybersecuritydfirinfosecpowershell

matanolabs/matano

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

Rust1.7k122Updated 5 days ago

alertingapache-icebergawsaws-securitybig-data+15

Bert-JanP/Hunting-Queries-Detection-Rules

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Python1.6k318Updated 13 hours ago

azureblueteamcybersecuritydefender-for-endpointdfir+10

cyb3rxp/awesome-soc

A curated knowledge base to build, run and mature a SOC (including CSIRT).

1.6k258Updated 9 hours ago

architecturecertcsirtcybersecuritydetection-engineering+14

api0cradle/LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

XSLT1.6k350Updated 6 days ago

blueteamdfirliving-off-the-landlolbinslolscripts+2

TheHive-Project/Cortex

Cortex: a Powerful Observable Analysis and Active Response Engine

Scala1.6k256Updated 2 days ago

analysisanalyzerapicortexcyber-threat-intelligence+15

obsidianforensics/hindsight

Browser forensics tool for Google Chrome (and other Chromium-based browsers)

Python1.4k174Updated 3 days ago

browser-forensicschromedfirforensicsgoogle-chrome+1

Page 1 of 30