CCXLabs / CCXDiggerLinks
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
☆46Updated 4 years ago
Alternatives and similar repositories for CCXDigger
Users that are interested in CCXDigger are comparing it to the libraries listed below
Sorting:
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- ☆42Updated 4 years ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- Recon Hunt Queries☆77Updated 4 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆54Updated 2 years ago
- ☆8Updated 8 months ago
- ☆35Updated 8 months ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- The PoLRBear Project☆35Updated 4 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- ☆29Updated 4 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- CSIRT Jump Bag☆26Updated last year
- Sigma Detection Rule Repository☆89Updated 5 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- Library of python scripts to apply Data Science in several forensics artifacts☆31Updated 4 years ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆73Updated last year
- ☆77Updated 6 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- ☆88Updated last year
- Resources for SANS CTI Summit 2021 presentation☆103Updated last year
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆42Updated 2 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆20Updated 4 years ago
- ☆59Updated 3 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆82Updated last year
- Intrusion Detection Honeypots Book Code☆25Updated 4 years ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago