velociraptor
Endpoint collector
An endpoint visibility and collection tool that provides host-based state information using a custom query language.
Digging Deeper....
3k stars
75 watching
496 forks
Language: Go
last commit: about 1 month ago
Linked from 4 awesome lists
digital-forensicsendpoint-discoveryendpoint-protectionendpoint-securityforensics-investigationsincident-responseinventory-management
meirwah/awesome-incident-response
cugu/awesome-forensics
0x4d31/awesome-threat-detection
funkmyster/awesome-cloud-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 omenscan/achoirx | A Go-based forensic collection and analysis tool designed for cross-platform use. | 37 |
 deadtrickster/prometheus.ex | A set of tools and integrations for Elixir applications to collect and report metrics to Prometheus. | 413 |
 pstirparo/mac4n6 | A centralized collection of forensics artifacts locations for Mac OS X and iOS. | 326 |
 akvorado/akvorado | A system for collecting, enriching and visualizing network flow data from various sources | 1,412 |
 forensicanalysis/artifactcollector | A tool to extract forensic artifacts from various operating systems | 271 |
| deadtrickster/prometheus_process_collector | A collector that exposes various process metrics, such as CPU usage and memory information. | 52 |
 sekoialab/fastir_collector | A tool for collecting and analyzing Windows system artefacts on live systems | 507 |
 chromium/crashpad | A system for collecting and analyzing crash data from software applications. | 440 |
 op7ic/unix_collector | A script designed to automatically collect various system artifacts and data from Unix-like systems without the need for manual intervention or external dependencies. | 33 |
 ownsecurity/fastir_artifacts | A tool for collecting forensic artifacts from live hosts across multiple operating systems. | 160 |
 hurricanelabs/machinae | A tool for collecting security-related data from public sites and feeds. | 505 |
 skynet0x01/tugarecon | A tool designed to collect and gather subdomains for penetration testing and bug hunting. | 153 |
 nccgroup/scrying | A tool for collecting screenshots of remote desktops and web applications in one place | 454 |
 deepfence/packetstreamer | A tool for collecting and streaming network traffic from multiple machines for forensic analysis and security monitoring | 1,891 |
 orlikoski/cylr | A tool that collects and preserves forensic artifacts from NTFS file systems without impacting the host system. | 652 |