From 1e804f7113a81acc3ec4c2f1b5e67ec8cb9d8893 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Mon, 15 Nov 2021 08:49:05 +0000
Subject: [PATCH] Add: zeronetworks/RPCFirewall to DFIR section

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 32f0a13..34360c6 100644
--- a/README.md
+++ b/README.md
@@ -1809,6 +1809,10 @@ This repository is created as an online bookmark for useful links, resources and
         <td><a href="https://github.com/yampelo/beagle">yampelo/beagle</a></td>
         <td>Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/zeronetworks/RPCFirewall">zeronetworks/RPCFirewall</a></td>
+        <td>RPC is the underlying mechanism which is used for numerous lateral movement techniques, reconnaisense, relay attacks, or simply to exploit vulnerable RPC services.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/zodiacon/ProcMonXv2">zodiacon/ProcMonXv2</a></td>
         <td>Procmon-like tool that uses Event Tracing for Windows (ETW) instead of a kernel driver to provide event information.</td>