CrowdStrike / Identity-Protection
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Identity-Protection
- Tools for simulating threats☆174Updated last year
- A list of Splunk queries that I've collected and used over time.☆72Updated 4 years ago
- ☆41Updated 2 years ago
- ☆52Updated last year
- ☆80Updated last month
- LogRhythm PowerShell Toolkit☆49Updated last week
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Real-time Response scripts and schema☆104Updated 11 months ago
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆122Updated last week
- ☆14Updated last month
- Repository of SentinelOne Deep Visibility queries.☆118Updated 3 years ago
- ☆53Updated 3 years ago
- Cybersecurity Incident Response Plan☆87Updated 4 years ago
- SentinelOne STAR Rules☆50Updated last year
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆33Updated last year
- SPL cheatsheet for Splunk.☆20Updated last year
- MISP to Sentinel integration☆58Updated last week
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆23Updated 2 years ago
- This repository contains Splunk queries to hunt some anomalies☆38Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆141Updated last year
- ☆66Updated 8 months ago
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆51Updated 5 years ago
- 2021 SANS DFIR Summit: Greppin' Logs☆21Updated 3 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆191Updated 4 years ago
- ☆26Updated 3 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆75Updated 5 months ago
- ☆85Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year