Awesome-Mirrors/my-infosec-awesome
1
0
Fork 0
mirror of https://github.com/pe3zx/my-infosec-awesome.git synced 2025-01-10 07:09:32 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add: wagga40/Zircolite to DFIR section

Browse Source
This commit is contained in:
pe3zx 2021-04-11 19:14:31 +07:00
parent 0fee41049b
commit 0dbd10c698
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -1444,6 +1444,10 @@ This repository is created as an online bookmark for useful links, resources and
<td><a href="https://wazuh.com/">Wazuh</a></td> <td><a href="https://wazuh.com/">Wazuh</a></td>
<td>Open Source Host and Endpoint Security</td> <td>Open Source Host and Endpoint Security</td>
</tr> </tr>
<tr>
<td><a href="https://github.com/wagga40/Zircolite">wagga40/Zircolite</a></td>
<td>A standalone SIGMA-based detection tool for EVTX.</td>
</tr>
<tr> <tr>
<td><a href="https://github.com/williballenthin/EVTXtract">williballenthin/EVTXtract</a></td> <td><a href="https://github.com/williballenthin/EVTXtract">williballenthin/EVTXtract</a></td>
<td>EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.</td> <td>EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.</td>