From bc301a4b324894e4c2ff02a3dabec4f6e3887085 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Sun, 7 Oct 2018 20:52:09 +0700
Subject: [PATCH] Add: CrowdStrike/Forensics

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 32bdccf..96634dd 100644
--- a/README.md
+++ b/README.md
@@ -1180,6 +1180,10 @@ _return-to-libc techniques_
         <td><a href="https://github.com/carmaa/inception">carmaa/inception</a></td>
         <td>Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA. The tool can attack over FireWire, Thunderbolt, ExpressCard, PC Card and any other PCI/PCIe interfaces.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/CrowdStrike/Forensics">CrowdStrike/Forensics</a></td>
+        <td>Scripts and code referenced in CrowdStrike blog posts</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/cryps1s/DARKSURGEON">cryps1s/DARKSURGEON</a></td>
         <td>DARKSURGEON is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense.</td>