Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.
-
Updated
Aug 10, 2019 - C
#
dfir
Here are 12 public repositories matching this topic...
CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
-
Updated
Oct 25, 2024 - C
A port of Kaitai to the Hiew hex editor
-
Updated
May 20, 2020 - C
dcfldd - enhanced version of dd for forensics and security
-
Updated
Jun 17, 2018 - C
Trace ScriptBlock execution for powershell v2
-
Updated
Jan 14, 2020 - C
Proof-of-Concept to evade auditd by writing /proc/PID/mem
-
Updated
Aug 21, 2023 - C
Proof-of-Concept to evade auditd by tampering via ptrace
-
Updated
Aug 3, 2023 - C
This repo hosts basic win32 compatible and visual studio C based shell code for an article on analysis
c
windows
security
analysis
static-analysis
reverse-engineering
forensics
dfir
cybersecurity
shellcode
payload
ghidra
-
Updated
Jun 14, 2020 - C
A GPS Forensics Utility to Parse GPX Files
python
data-mining
gpx-files
dfir
kml
gps-device
gps-data
gps-coordinates
gps-tracking
forensic-analysis
cirt
gps-converter
gps-forensics
trip-data
xslt-gpx
-
Updated
Apr 30, 2017 - C
Improve this page
Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."