CISecurity / CCPA-Docs
☆9Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for CCPA-Docs
- A few quick recipes for those that do not have much time during the day☆21Updated 2 weeks ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆25Updated 10 months ago
- ☆21Updated last year
- Best practices in threat intelligence☆46Updated 2 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12Updated 4 years ago
- ☆11Updated 3 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆31Updated last year
- ☆11Updated 3 years ago
- ☆14Updated 4 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 2 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Orchestrate gatherer, scanner, saver, and trustymail_reporter☆14Updated last week
- A MITRE ATT&CK Lookup Tool☆43Updated 6 months ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆10Updated 4 years ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- Documentation used for Shuffle☆18Updated this week
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…☆35Updated last month
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- ☆11Updated 7 years ago
- Incident Response Report Using GitHub-Sphinx☆19Updated 5 years ago
- OpenIOC rules to facilitate hunting for indicators of compromise☆38Updated 2 years ago
- Workflows for Shuffle☆20Updated 2 years ago
- SIEM Detection Use Case Library mapped to MITRE ATT&CK tactics and techniques☆12Updated 6 years ago