CCXLabs / CCXDiggerLinks
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
☆43Updated 5 years ago
Alternatives and similar repositories for CCXDigger
Users that are interested in CCXDigger are comparing it to the libraries listed below
Sorting:
- Resources for SANS CTI Summit 2021 presentation☆104Updated 2 years ago
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- Recon Hunt Queries☆79Updated 4 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆84Updated 5 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆42Updated 3 years ago
- Sigma Detection Rule Repository☆92Updated 5 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- ☆92Updated 6 months ago
- Repository for SPEED SIEM Use Case Framework☆58Updated 5 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆117Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆111Updated 5 years ago
- Python library for threat intelligence☆93Updated last year
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 4 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆55Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.☆79Updated 3 years ago
- Detection Ideas & Rules repository.☆178Updated 4 years ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆69Updated last year
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆85Updated 2 years ago
- ☆13Updated last year
- ☆42Updated 5 years ago
- Powershell - web traffic whitenoise generator☆47Updated 5 years ago
- A PowerShell incident response script for quick triage☆81Updated 3 years ago
- My Jupyter Notebooks☆36Updated 10 months ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆78Updated 2 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆83Updated 2 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Updated 2 years ago
- Collection of resources related to the Center for Threat-Informed Defense☆76Updated last year
- ☆33Updated 4 years ago
- ☆56Updated 4 years ago