CrowdStrike / Identity-Protection
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Identity-Protection
- A list of Splunk queries that I've collected and used over time.☆72Updated 4 years ago
- Real-time Response scripts and schema☆104Updated 11 months ago
- Tools for simulating threats☆177Updated last year
- MISP to Sentinel integration☆60Updated this week
- Repository of SentinelOne Deep Visibility queries.☆119Updated 3 years ago
- ☆52Updated last year
- ☆80Updated 2 months ago
- This repository contains Splunk queries to hunt some anomalies☆38Updated 2 years ago
- Cybersecurity Incident Response Plan☆87Updated 4 years ago
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆122Updated 3 weeks ago
- ☆41Updated 2 years ago
- This repository contains Community and Field contributed content for LogScale☆162Updated 2 weeks ago
- SentinelOne STAR Rules☆50Updated last year
- LogRhythm PowerShell Toolkit☆49Updated this week
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆193Updated 4 years ago
- SPL cheatsheet for Splunk.☆20Updated last year
- ☆24Updated last year
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆51Updated 5 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆57Updated 6 months ago
- ☆20Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆67Updated last year
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- ☆26Updated 3 years ago
- ☆66Updated 8 months ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆23Updated 2 years ago
- Repository of public reference frameworks for the DFIR community.☆109Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- Practical Orientation Of MVISION EDR Query Language☆34Updated last year