Cisco-Talos / badgerboard
☆16Updated 10 months ago
Alternatives and similar repositories for badgerboard:
Users that are interested in badgerboard are comparing it to the libraries listed below
- Zeek Profinet I/O Context Manager Parser - CISA ICSNPP☆10Updated 3 months ago
- ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles☆17Updated 2 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Updated last month
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Scripts and lists to help generate YARA friendly string mutations☆19Updated last year
- A co-simulation framework for reasearching cybersecurity in power grids.☆19Updated last month
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- ☆11Updated 4 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆27Updated 10 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year
- Lua plugin to extract data from Wireshark and convert it into MISP format☆47Updated last year
- VTC - Velociraptor Timeline Creator☆15Updated 8 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆50Updated last month
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆22Updated 2 months ago
- Presentation Slides and Resources☆15Updated 7 months ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated 11 months ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆32Updated 2 months ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- Linux #rootkit and #malware revealer☆22Updated 5 months ago
- create a "simulated internet" cyber range environment☆15Updated 3 months ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- An extension of the sigma standard to include security metrics.☆15Updated last year
- PowerShell script that abuses browser bookmark synchronization as a mechanism for sending and receiving data between systems.☆15Updated 2 years ago
- Threat Simulator for Enterprise Networks☆14Updated 2 years ago
- This repository has been archived in favor of https://github.com/idaholab/Malcolm-Test-Artifacts☆33Updated last month
- A simple tool designed to create Atomic Red Team tests with ease.☆35Updated last month
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆24Updated 8 years ago