ArturN
Follow
Stars
Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or even inspiration).
For educational purposes only, samples of ransomware/wiper trojans including screenshots/ransom-notes.
For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.
Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and Updates
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Add your HDD, SSD and NVMe drives to your Synology's compatible drive database and a lot more
A list of Free Software network services and web applications which can be hosted on your own servers
A python library to parse OneNote (.one) files
Rules generated from our investigations.
Converts Sigma detection rules to a Splunk alert configuration.
PowerForensics provides an all in one platform for live disk forensic analysis
A python tool to automate KeePass discovery and secret extraction.
Various tips & tricks
The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifa…
A feature-rich command-line audio/video downloader
Advanced player for set-top boxes and tvs running Android OS
Forensics Wiki, a wiki devoted to information about digital forensics (also known as computer forensics)
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
Exploit Development and Reverse Engineering with GDB & LLDB Made Easy