CSIRT-MU / CRUSOE
CRUSOE: A Toolset for Cyber Situational Awareness and Decision Support in Incident Handling Inspired by the OODA Loop
☆13Updated 4 months ago
Alternatives and similar repositories for CRUSOE:
Users that are interested in CRUSOE are comparing it to the libraries listed below
- This work shows the viability of automatically generated attack graphs that are used for adversary behavior execution in industrial contr…☆12Updated 3 years ago
- MulVAL: A logic-based, data-driven enterprise network security analyzer - Originally developed at Kansas State University, updated for Cy…☆33Updated 11 months ago
- Machine learning on knowledge graphs for context-aware security monitoring (data and model)☆17Updated 3 years ago
- Scripts to deploy virtual testbed for log data analysis and anomaly detection.☆23Updated last year
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆92Updated 9 months ago
- A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports☆23Updated last year
- STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling☆32Updated 4 months ago
- Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively☆22Updated this week
- [TDSC 2021] IntruSion alert-driven Attack Graph Extractor. https://ieeexplore.ieee.org/document/9557854☆35Updated 9 months ago
- A framework for the Analysis of Intrusion Detection Alerts☆17Updated 3 years ago
- This repository hosts community contributed Kestrel analytics☆17Updated 10 months ago
- MALOnt - an ontology for Malware Threat Intelligence.☆10Updated 3 years ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆148Updated 2 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆77Updated 8 months ago
- A framework for synthesizing lateral movement login data.☆24Updated 3 years ago
- Correlate NVD datasets wIth CWE/CAPEC/CVSS labels for customised usage. Plus static analysis and data visualisation.☆13Updated last year
- SecureBERT is a domain-specific language model to represent cybersecurity textual data.☆88Updated 9 months ago
- Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.☆62Updated last year
- ☆22Updated 3 years ago
- This use case aims to leverage stream reasoning techniques and the concept of semantic importance to detect one attacking type of the ins…☆22Updated 8 years ago
- SMET : Semantic Mapping of CVE to ATT&CK and its Application to Cybersecurity☆46Updated 7 months ago
- ☆105Updated 4 years ago
- ☆16Updated 6 years ago
- MulVAL interaction rules and their mapping to MITRE ATT&CK Techniques☆11Updated 6 months ago
- Unfetter Insight performs natural language processing and analysis for text data to determine and convert to CTI Stix data automatically.☆19Updated 6 years ago
- A python app to predict Att&ck tactics and techniques from cyber threat reports☆120Updated last year
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…☆41Updated last year
- GridAttackAnalyzer: Smart Grid Attack Analysis Framework☆18Updated 3 years ago