A collection of useful Resources for Cyber Security Operations practitioners, or those building/evolving a SOC.
Slack DFIR channel
Google Rapid Response (GRR) Framework
CIRTkit
Computer Aided Investigative Environment (CAINE)
Cyber Triage
Demisto
Digital Forensics Framework
Doorman
Falcon Orchestrator
Fast Incident Response (FIR)
Fully Integrated Defense Operation (FIDO)
TheHive
Incident Handling Automation Protocol (IHAP)
IRMA
Kansa
Mandiant RedLine
nightHawk
Open Computer Forensics Architecture
Request Tracker (RTIR)
ROCKNSM Response Ops Collection Kit
Sandia Cyber Omni Tracker (SCOT)
Zentral
CRITS
Fileintel
Gephi
Hostintel
Hindsight
Highlighter
Malstrom
Maltego
Timesketch
Threat Note
The Coroner's Toolkit
EnCase
Open Computer Forensics Architecture (OCFA)
Oxygen Forensic Suite
Paladin Forensic Suite
SANS Investigative Forensics Toolkit (SIFT)
The Sleuth Kit (TSK) & Autopsy
X-Ways Forensics
CIRCL's Dynamic Malware Analysis
Malwr
Manticore binary analysis
TOTALHASH
Angr
Apktool
BinNavi
Binwalk
Capstone
dex2jar
dotPeek
Frida
ILSpy
Java Decompiler
Miasm
Pin
QEMU
Radare
Snowman
Unicorn
x64dbg
Z3
Bulk Extractor
Forensic Imager
Guymager
FTK Imager
Computer Online Forensic Evidence Extractor (COFEE)
Belkasoft Live RAM Capturer
Linux Memory Grabber
Magnet RAM Capture
OSForensics
Evolve
KnTList
LiME
Memoryze
Rekall
Responder PRO
Volatility
WindowsSCOPE
Aw Snap Site Cleaning
Cellebrite UFED
DEFT
HELIX3
HxD hex editor
Llibforensics
P2 eXplorer
PlainSight
ProDiscover Basic
Registry Recon
USB Historian
Xplico
Xry
Copyright © 2023 Phenomenati - All Rights Reserved.
We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.