AdvancedThreatAnalytics / threat-analytics-search
Threat Analytics Search Chrome Extension
☆12Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for threat-analytics-search
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 3 months ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆36Updated 2 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆73Updated 2 weeks ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆67Updated last year
- A community event for security researchers to share their favorite notebooks☆106Updated 9 months ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated 3 weeks ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆125Updated last year
- Corelight@Home script☆40Updated last year
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆65Updated 8 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆38Updated 6 months ago
- Web based S1 query navigator for one-click threat hunting☆18Updated 3 years ago
- Collection of useful Canary tools☆69Updated this week
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆125Updated 2 years ago
- ☆87Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆33Updated last year
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆77Updated 10 months ago
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆66Updated 3 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆57Updated 6 months ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆64Updated 2 years ago
- CSIRT Jump Bag☆27Updated 6 months ago
- Full of public notes and Utilities☆87Updated this week
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆66Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆49Updated 3 weeks ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆123Updated 8 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated 2 weeks ago