Awesome-Mirrors/awesome-incident-response
1
0
Fork 0
mirror of https://github.com/meirwah/awesome-incident-response.git synced 2024-07-02 17:21:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #45 from hslatman/hs_fastir_linux

Browse Source 
FastIR for Linux + Linux Evidence Collection category
This commit is contained in:
Meir Wahnon 2016-01-27 16:10:40 +02:00
commit 3350d01835
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -13,6 +13,7 @@ A curated list of tools and resources for security incident response, aimed to h
- [Evidence Collection](#evidence-collection)
- [Windows Evidence Collection](#windows-evidence-collection)
- [OSX Evidence Collection](#osx-evidence-collection)
- [Linux Evidence Collection](#linux-evidence-collection)
- [Sandboxing/reversing tools](#sandboxingreversing-tools)
- [Linux Distributions](#linux-distributions)
- [Other tools](#other-tools)
@ -93,6 +94,10 @@ A curated list of tools and resources for security incident response, aimed to h
* [OSX Auditor](https://github.com/jipegit/OSXAuditor) - OSX Auditor is a free Mac OS X computer forensics tool
* [OSX Collector](https://github.com/yelp/osxcollector) - An OSX Auditor offshoot for live response
### Linux Evidence Collection
* [FastIR Collector Linux](https://github.com/SekoiaLab/Fastir_Collector_Linux) - FastIR for Linux collects different artefacts on live Linux and records the results in csv files.
### Sandboxing/reversing tools
* [Cuckoo](https://github.com/cuckoobox) - Open Source Highly configurable sandboxing tool
* [Cuckoo-modified](https://github.com/spender-sandbox/cuckoo-modified) - Heavily modified Cuckoo fork developed by community