Blevene / Crimeware-In-The-Modern-Era
Paper and Links to Crimeware in the Modern Era
☆31Updated 5 years ago
Related projects: ⓘ
- A collection of typical false positive indicators☆54Updated 3 years ago
- InvestigationPlaybookSpec☆72Updated 6 years ago
- SANS Hunting on the Cheap☆35Updated 8 years ago
- ☆40Updated this week
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 5 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- ☆54Updated 4 years ago
- ☆35Updated this week
- pocket guide for core threat hunting concepts☆23Updated 4 years ago
- Mitre Att&ck Technique Emulation☆82Updated 5 years ago
- Volatility plugins created by the author☆44Updated 8 years ago
- Splunk integration with MISP☆12Updated 6 years ago
- Sandbox feature upgrade with the help of wrapped samples☆75Updated 6 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 5 years ago
- Tools to search through massive amounts of data☆21Updated 11 months ago
- SightingDB is a database for Sightings☆21Updated last year
- PowerShell No Agent Hunting☆107Updated 6 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆55Updated 2 years ago
- Mass static malware analysis tool☆91Updated 2 years ago
- Python IOC Editor☆61Updated 9 years ago
- Recon Hunt Queries☆76Updated 3 years ago
- ��☆76Updated 6 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆39Updated 5 years ago
- stoQ Public Plugins☆71Updated last year
- Bot to create MISP events from data in Slack☆17Updated 8 months ago
- ☆39Updated 5 years ago
- ☆85Updated this week
- SEC599 supporting GitHub repository☆14Updated 5 years ago
- A YARA Rule Performance Measurement Tool☆58Updated 6 months ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago