CrowdStrike / omigo-data-analytics

Related projects ⓘ

Alternatives and complementary repositories for omigo-data-analytics

• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆13Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 11 months ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆46Updated last month
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆18Updated last month
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆15Updated 5 months ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated this week
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆37Updated 3 years ago
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆11Updated 4 years ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year
• marcusbakker / GreyNoise
  Python tool build around GreyNoise's alpha/public API
  ☆10Updated 5 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆83Updated 5 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆31Updated last week
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆25Updated 6 months ago
• egaus / wayfinder
  ☆9Updated 6 years ago
• optiv / netneedle
  Network based steganography based control channels and chat.
  ☆8Updated 8 years ago
• zeek / zeek-aux
  Zeek Auxiliary Programs
  ☆26Updated 2 months ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 2 years ago
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• fmadio / pcap_merge
  High performance time ordered PCAP merging utility
  ☆22Updated 2 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated 2 years ago