"topic:velociraptor" — Search

27 results for “topic:velociraptor”

This project is a SIEM with SIRP and Threat Intel, all in one.

arkimecortexdockerelasticsearchfilebeatkibanalogstashmalwaremispmwdbn8nopenctisigmasuricatathehivevelociraptoryarazeekzircolite

cgosec/Blauhaunt

A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts

JavaScript18111Updated 3 weeks ago

analysiscyber-crimedfirforensicsgraphincident-responseinvestigationsecurityvelociraptor

CCXLabs/CCXDigger

The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.

441Updated 2 weeks ago

cybercxdfirdiggerforensicsincident-responsethreat-intelligencevelociraptor

Digital-Defense-Institute/openrelik-pipeline

Pipeline that allows sending forensic artifacts to OpenRelik for automatic processing

Python407Updated 4 weeks ago

dfirdfir-automationhayabusaincident-responseinfoseclog2timelineopenrelikplasosecopssecuritysecurity-automationtimesketchvelociraptor

joeavanzato/velociraptor-timeline-creator

VTC - Velociraptor Timeline Creator

Go192Updated 3 months ago

incident-responsesuper-timelinethreat-huntingtimelinevelociraptor

CERT-EDF/generaptor

CLI generator for Velociraptor offline collector

Python164Updated 6 days ago

cli-appdfirdfir-automationvelociraptor

WesSec/VelociDeploy-o-Matic

Scripts to for ready-to-use Velociraptor instance deployment in Azure

HCL144Updated 10 months ago

ansibleazureincident-responseincident-response-toolingterraformvelociraptor

jurassiscripts/vscode-velociraptor

Velociraptor support for VSCode

TypeScript92Updated 1 year ago

denonpm-scriptstypescriptvelociraptorvscode

fuseyjz/kubernetes-velociraptor

This guide is for setting up Velociraptor in Kubernetes (AWS)

52Updated 1 month ago

forensics-investigationsincident-responsekubernetesvelocidexvelociraptor

M507/VeloTheHelo

A deployment and testing platform for Velociraptor's client artifacts

Python50Updated 3 months ago

artifactsdfirdfir-automationdfir-toolsvelociraptorvelociraptor-query-languagevelociraptorirvelociraptors

kidrek/secubian

SECUBIAN is a French Linux distribution focused on evidence processing during Incident Response.

Python53Updated 2 months ago

ansible-playbookcapadfir-irisdrawioelasticglancehayabusalibretranslatemvtn8nnotebook-jupytersigmasphinx-docspiderfootsuricatatimesketchvelociraptorvolatilityyarazircolite

V1D1AN/ZVELK

No description provided.

Shell40Updated 1 year ago

codimdelasticsearchkibanaosintvelociraptorzircolite

Mohamed-Adil-Cyber/Anydesk-VelociraptorIR-Log-Collector

Simple anydesk log collector written in VQL for velociraptorIR and is an edited version of the file collector artifact. This file was made while I worked for ESTIJABAH company

40Updated 11 months ago

anydeskincident-responsevelociraptorvelociraptorirvql

CachedChaos/ECHO

Evidence Collection & Handling Orchestrator

PowerShell31Updated 4 weeks ago

dfirforensics-toolsm365parsingvelociraptorzimmerman

jurassiscripts/setup-velociraptor

A GitHub Action to setup Velociraptor

30Updated 1 year ago

github-actionsvelociraptor

M507/Custom.DFIR.Yara.AllRules

A Velociraptor artifact for automated Thor YARA scanning

30Updated 3 months ago

thorthor-litevelociraptorvelociraptorirvelociraptorsyara

ThabisoM7/C2-SERVER-FORENSIC-ANALYSIS

No description provided.

20Updated 2 months ago

c2velociraptor

jordangarrison/spit

SPAm IP Tester: a CLI for those IP addresses that don't look friendly

TypeScript21Updated 2 years ago

denoipscamalyticstypescriptvelociraptor

dfir-dd/velociraptor-artifacts

Custom Artifacts for Rapid7 Velociraptor Software

20Updated 11 months ago

forensicsrapid7velociraptor

RahulCyberX/Digital-Forensics-Incident-Response

Understanding what forensic artifacts are present in the Windows and Linux Operating Systems, how to collect them, and leverage them to investigate security incidents.

10Updated 1 month ago

autopsy-guidfirkapelinux-forensicsmalware-analysismemory-forensicsredlineregistry-explorerregistry-forensicsthehive-projecttryhackmetryhackme-answerstryhackme-writeupsvelociraptorvolatilitywindows-forensics

Oligo12/cyber-projects

Blue-team portfolio: SOC detection engineering, malware analysis, vulnerability management.

10Updated 2 weeks ago

blue-teamcybersecuritydetection-engineeringkqlmalware-analysismicrosoft-sentinelsysmonvelociraptorwindows-forensics

juju4/velociraptor-offline-collections

Sample configurations for velociraptor offline collections

Python10Updated 6 days ago

forensicsvelociraptor

kidrek/velociraptor_artifacts

Custom velociraptor artifacts

00Updated 1 year ago

artifactslinuxvelociraptor

p1atdev/deno_template

A simple template for Deno.

TypeScript00Updated 3 years ago

denodockertemplatevelociraptor

DrPwner/Velociraptor-Syslog

This tool monitors Velociraptor's syslog messages for specific actions performed by users within the Velociraptor DFIR platform. When certain patterns are detected, it sends detailed email notifications to designated recipients, providing enhanced visibility into user activities and potential security events.

Python00Updated 10 months ago

automationdfirdfir-automationdfir-toolslogssyslogsyslog-clientsyslog-messagessyslog-parsersyslog-servervelociraptorvelociraptor-syslog

ryanddeveloper/dfir

A collection of basic DFIR tips, tricks and common places to hunt.

00Updated 5 months ago

dfirincident-responselinuxvelociraptorvolatilitywindows

System-CTL/Velociraptor-2025

Velociraptor Troubleshooting & Analyst Guide — A centralized knowledge base for SOC and DFIR teams to document, analyze, and resolve Velociraptor operational issues. Includes step-by-step troubleshooting runbooks, error reference guides, automation scripts, and templates for efficient investigation and response.

00Updated 4 months ago

dfirforensicsremote-controlsansvelociraptorvelociraptor-query-languagevelociraptor-syslogvelociraptorirvelociraptorissuesvelociraptors