CrowdStrike / helpful-links
List of helpful publicly available CrowdStrike material.
☆17Updated last week
Related projects ⓘ
Alternatives and complementary repositories for helpful-links
- A tool that allows you to document and assess any security automation in your SOC☆41Updated 3 weeks ago
- CrowdStrike Falcon Queries For Advanced Threat Detection☆14Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆42Updated last month
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆97Updated this week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆65Updated 8 months ago
- Cybersecurity Incident Response Plan☆87Updated 4 years ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆24Updated 6 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆38Updated 6 months ago
- Dictionary of CTI-related acronyms, terms, and jargon☆135Updated 11 months ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆36Updated 2 years ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆125Updated 2 years ago
- This repository contains Splunk queries to hunt some anomalies☆38Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆67Updated last year
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated 2 weeks ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆42Updated 2 weeks ago
- ☆41Updated 2 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated 2 weeks ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆75Updated 11 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Crowdstrike response script containing various functions for IR/triage☆12Updated 3 years ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆45Updated 5 months ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- Search a filesystem for indicators of compromise (IoC).☆68Updated 2 months ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆69Updated last month
- Anvilogic Forge☆86Updated last week
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆66Updated 4 years ago
- A community event for security researchers to share their favorite notebooks☆106Updated 9 months ago