Projects in Awesome Lists by acquiredsecurity
A curated list of projects in awesome lists by acquiredsecurity .
https://github.com/acquiredsecurity/forensic-timeliner
A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV output from processed triage evidence for Eric Zimmerman (EZ Tools) Kape, Axiom, Hayabusa, Chainsaw and Nirsoft into a unified timeline.
axiom chainsaw digital-forensic-tool digital-forensics-incident-response ez-tools forensic-analysis forensic-timeline forensics-investigations forensics-tools hayabusa nirsoft timelines yaml
Last synced: 26 Feb 2026
https://github.com/acquiredsecurity/sentinel-one-star-rules-threat-hunts
SentinelOne STAR Rules
Last synced: 07 Feb 2026
https://github.com/acquiredsecurity/beaconsim
Simulate Malware activity config connections via Yaml
beacon eicar-test malware malwaresimulation
Last synced: 03 Mar 2026
https://github.com/acquiredsecurity/malwaresimulations
This Repo Contains some examples of attacker Simulated behaviors you can use to test your AV/EDR/XDR telemetry.
Last synced: 04 Oct 2025
https://github.com/acquiredsecurity/evtxecmd-rso-to-dataset
Use this Script to download and run EvtXCMD on a Windows Endpoint (Using SentinelOne Remote Script Orchestration (RSO)) and parse all event logs to CSV and JSON and ship the results to DataSet.
Last synced: 03 Jul 2025
https://github.com/acquiredsecurity/contichatlogsexcel
Chat logs from Conti Leak 2/27 in Easy to use format
Last synced: 30 Jan 2026
https://github.com/acquiredsecurity/sentinelone_threatintelapi_json_generator
The SentinelOne IOC JSON Generator is a web-based tool that allows users to manually input Indicators of Compromise (IOCs) and generate properly formatted JSON data for use with the SentinelOne API. It supports one or more entries, a structured optional fields section, and a built-in webhook submission feature for direct API integration.
Last synced: 27 Feb 2026
https://github.com/acquiredsecurity/sentinelone-remote-ops-scripts
SentinelOne Remote Operations PowerShell Scripts
Last synced: 03 Jul 2025
https://github.com/acquiredsecurity/foundation-sec-webchat
Flask server and html page to query your locally running Foundation-Sec-8B model
ai cisco foundation-sec-8b llm
Last synced: 29 Jan 2026
https://github.com/acquiredsecurity/simplec2listener
Simeple C2 Listener for Local Network. Execute Powershell on a remote host!
Last synced: 28 Jan 2026
https://github.com/acquiredsecurity/threatintel-samples
Sample fake threat intel for testing
Last synced: 18 Oct 2025
https://github.com/acquiredsecurity/acquiredsecurity.github.io
Tools For Digital Forensics and SentinelOne
Last synced: 03 Feb 2026