CptOfEvilMinions / ChooseYourSIEMAdventure
☆17Updated 3 years ago
Alternatives and similar repositories for ChooseYourSIEMAdventure:
Users that are interested in ChooseYourSIEMAdventure are comparing it to the libraries listed below
- A few quick recipes for those that do not have much time during the day☆22Updated 3 months ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 3 years ago
- Osquery Packs we use for customer security hardening☆12Updated 4 months ago
- Dashboards for conducting forensic investigation using windows events in Kibana☆17Updated 5 years ago
- Official documentation for TheHive Project applications☆21Updated last year
- Simulates a compromise in a cloud and container environment☆32Updated 2 months ago
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- Automatic detection engineering technical state compliance☆54Updated 7 months ago
- CyCAT.org API back-end server including crawlers☆30Updated 2 years ago
- Workflows for Shuffle☆21Updated 2 years ago
- Learn about a network from a pcap file or reading from an interface☆28Updated 10 months ago
- ☆21Updated 3 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆33Updated 3 years ago
- AWS EKS Cluster Forensics☆23Updated 3 years ago
- Documentation used for Shuffle☆19Updated this week
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 2 months ago
- Notes for High Availability MISP in AWS☆19Updated 5 years ago
- Contains log samples and configuration files for the Tactical Data Handling at Scale with Logstash course☆11Updated 5 years ago
- CSIRT Jump Bag☆27Updated 9 months ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Lua plugin to extract data from Wireshark and convert it into MISP format☆47Updated last year
- ☆34Updated 4 years ago
- THOR Thunderstorm Collectors☆24Updated last week
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- Converting data from services like Censys and Shodan to a common data model☆49Updated 5 months ago
- OpenIOC rules to facilitate hunting for indicators of compromise☆38Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆53Updated 4 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Python command line tool used for generating GIAC Certification indexes.☆25Updated last year
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆27Updated 11 months ago