rastrea2r
System Investigator
A tool for incident responders and security analysts to triage suspect systems, hunt for IOCs, and collect forensic evidence.
Collecting & Hunting for IOCs with gusto and style
236 stars
17 watching
53 forks
Language: Python
last commit: over 4 years ago
Linked from 3 awesome lists
huntingiocsecurity-toolsthreat
meirwah/awesome-incident-response
fabacab/awesome-cybersecurity-blueteam
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
 aboutsecurity/rastrea2r | A tool for hunting and tracking Internet of Things (IoT) security threats by collecting and analyzing indicators of compromise (IOCs) | 116 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 robusta-dev/holmesgpt | Automates investigation of alerts from monitoring tools like Prometheus, reducing mean-time-torespond and improving incident management. | 566 |
 ajmartel/irtriage | Automated incident response tool for collecting critical system information during forensic analysis of Windows systems. | 130 |
 sekoialab/fastir_collector_linux | A tool for gathering and recording information from live Linux systems for forensic analysis | 173 |
 sroberts/jager | Tools for extracting and analyzing threat indicators from various data sources | 84 |
 aspecscire/rasters.rs | A Rust library providing tools to process large raster data in memory-efficient and parallel ways. | 11 |
 ptr32void/ostrica | A framework to collect and visualize threat intelligence information from various sources in a flexible and plugin-based architecture. | 309 |
 kasperskylab/klara | Helps Threat Intelligence researchers hunt for new malware by efficiently scanning large collections of files with Yara rules | 698 |
 hasherezade/hollows_hunter | Analyzes running processes to detect and dump malicious code | 2,047 |
| sekoialab/fastir_collector | A tool for collecting and analyzing Windows system artefacts on live systems | 507 |
 codeyourweb/fastfinder | Tools for detecting suspicious files and directories on Windows and Linux endpoints. | 234 |
 spyre-project/spyre | A modular host-based IOC scanner built around YARA pattern matching engine | 164 |
 psecio/canary | A security tool that enables input detection and response. | 30 |
 botherder/targetedthreats | Collects and analyzes indicators of malicious targeting of civil society organizations. | 188 |