AdvancedThreatAnalytics / threat-analytics-search
Threat Analytics Search Chrome Extension
☆12Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for threat-analytics-search
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆36Updated 2 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 3 months ago
- ☆70Updated 3 weeks ago
- A community event for security researchers to share their favorite notebooks☆106Updated 8 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆38Updated 6 months ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆65Updated 7 months ago
- ☆82Updated 2 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Recon Hunt Queries☆75Updated 3 years ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated last week
- Public tools, scripts or code snippets that can help when working with our products☆46Updated 2 months ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆56Updated 6 months ago
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- CSIRT Jump Bag☆27Updated 6 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated last week
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆77Updated 10 months ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆24Updated 6 months ago
- Workflows for Shuffle☆20Updated 2 years ago
- Remote access and Antivirus Logging Database☆41Updated 6 months ago
- ReWrite of AChoir in Go for Cross Platform☆34Updated this week
- ☆1Updated 2 weeks ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆51Updated last year
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- ☆40Updated last year
- Corelight@Home script☆40Updated last year