CCXLabs / CCXDiggerLinks
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
☆45Updated 4 years ago
Alternatives and similar repositories for CCXDigger
Users that are interested in CCXDigger are comparing it to the libraries listed below
Sorting:
- Resources for SANS CTI Summit 2021 presentation☆103Updated last year
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- Sigma Detection Rule Repository☆89Updated 5 years ago
- ☆88Updated last month
- Collection of useful, up to date, Carbon Black Response Queries☆84Updated 4 years ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆54Updated 3 years ago
- Python library for threat intelligence☆87Updated 7 months ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆42Updated 2 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- ☆12Updated 10 months ago
- Recon Hunt Queries☆77Updated 4 years ago
- ☆42Updated 4 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆115Updated last year
- ☆35Updated 10 months ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆75Updated last year
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- A PowerShell incident response script for quick triage☆80Updated 3 years ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆84Updated last year
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆28Updated 3 weeks ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Library of python scripts to apply Data Science in several forensics artifacts☆31Updated 5 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆21Updated 4 years ago
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆125Updated 3 years ago
- My Jupyter Notebooks☆36Updated 5 months ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Updated last year