CrowdStrike / helpful-links
List of helpful publicly available CrowdStrike material.
☆17Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for helpful-links
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆51Updated last year
- A tool that allows you to document and assess any security automation in your SOC☆41Updated last week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆42Updated this week
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆45Updated 5 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆97Updated 8 months ago
- ☆41Updated 2 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆115Updated 4 years ago
- Automating Security Detection Engineering, published by Packt☆47Updated 3 weeks ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆77Updated 9 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- ☆114Updated last year
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆124Updated 2 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated this week
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- ☆85Updated 2 years ago
- Threat Analytics Search Chrome Extension☆12Updated 7 months ago
- A collection of various SIEM rules relating to malware family groups.☆61Updated 4 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆41Updated 2 weeks ago
- A community event for security researchers to share their favorite notebooks☆106Updated 8 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆24Updated 6 months ago
- CrowdStrike Falcon Queries For Advanced Threat Detection☆14Updated 2 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆37Updated 6 months ago
- Search a filesystem for indicators of compromise (IoC).☆68Updated 2 months ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 9 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated this week
- ☆80Updated last month