A3sal0n / CyberThreatHuntingLinks
A collection of resources for Threat Hunters
☆893Updated 9 months ago
Alternatives and similar repositories for CyberThreatHunting
Users that are interested in CyberThreatHunting are comparing it to the libraries listed below
Sorting:
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,163Updated 2 years ago
- Scripts and a (future) library to improve users' interactions with the ATT&CK content☆587Updated last year
- Actionable analytics designed to combat threats☆995Updated 3 years ago
- Cyber Analytics Repository☆952Updated 2 months ago
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆609Updated 5 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,800Updated 3 years ago
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆559Updated 2 years ago
- Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries☆456Updated 3 years ago
- Re-play Security Events☆1,663Updated last year
- Extract and aggregate threat intelligence.☆875Updated last year
- A set of Zeek scripts to detect ATT&CK techniques.☆599Updated last year
- Splunk Boss of the SOC version 2 dataset.☆387Updated 2 years ago
- Open Source Security Events Metadata (OSSEM)☆1,272Updated 2 years ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆930Updated last year
- SIEM Tactics, Techiques, and Procedures☆651Updated last week
- A framework for developing alerting and detection strategies for incident response.☆771Updated 3 years ago
- Detect Tactics, Techniques & Combat Threats☆2,187Updated last week
- Virtual Machine for Adversary Emulation and Threat Hunting☆1,292Updated 6 months ago
- A knowledge base of actionable Incident Response techniques☆644Updated 3 years ago
- ☆1,081Updated 6 years ago
- A collection of sources of indicators of compromise.☆889Updated 2 months ago
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,071Updated 8 months ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆566Updated 7 months ago
- MISP trainings, threat intel and information sharing training materials with source code☆412Updated 2 months ago
- A repository of curated datasets from various attacks☆664Updated last week
- ☆410Updated 11 months ago
- Incident Response Methodologies☆1,024Updated 7 years ago
- A collection of red team and adversary emulation resources developed and released by MITRE.☆515Updated 4 years ago
- DFIRTrack - The Incident Response Tracking Application☆522Updated 10 months ago
- A Python package to interact with the Mitre ATT&CK Framework☆477Updated last year