[redteam.to]
Tools Submit
← All tools

MDE-DFIR-Resources

https://github.com/cyb3rmik3/MDE-DFIR-Resources
Open Source
Categories
Forensics
Description

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

Keywords
curated-collections curated-list dfir digital-forensics digital-forensics-incident-response incident-response kql kusto kusto-query kusto-query-language live-response mde microsoft microsoft-defender-for-endpoint resources
See also
Binwalk
Open Source Kali

Firmware analysis tool for searching, extracting, and analyzing binary images. Identifies embedded f…

toolkit
Free

The essential toolkit for reversing, malware analysis, and cracking…

Ultimate-RAT-Collection
Free

For educational purposes only, exhaustive samples of 500+ classic/modern trojan builders including s…

goodboy-framework
Open Source

15-stage Windows malware development & analysis course in Rust. Red team builds it, blue team detect…

malwaredb-rs
Open Source

MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery…

AlphaGolang
Open Source

IDApython Scripts for Analyzing Golang Binaries…

© 2026 redteam.to — The Pentest Tool Directory

For authorized security testing and educational use only.