Add: wagga40/Zircolite to DFIR section

2024-06-25 05:02:13 +00:00 · 2021-04-11 19:14:31 +07:00 · 2021-04-11 19:14:31 +07:00 · 0dbd10c698
commit 0dbd10c698
parent 0fee41049b
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -1444,6 +1444,10 @@ This repository is created as an online bookmark for useful links, resources and
        <td><a href="https://wazuh.com/">Wazuh</a></td>
        <td>Open Source Host and Endpoint Security</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/wagga40/Zircolite">wagga40/Zircolite</a></td>
+        <td>A standalone SIGMA-based detection tool for EVTX.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/williballenthin/EVTXtract">williballenthin/EVTXtract</a></td>
        <td>EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.</td>