CyberSift / OSQUERY-PACKSLinks
Osquery Packs we use for customer security hardening
☆12Updated 7 months ago
Alternatives and similar repositories for OSQUERY-PACKS
Users that are interested in OSQUERY-PACKS are comparing it to the libraries listed below
Sorting:
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- ☆34Updated last year
- Workflows for Shuffle☆23Updated 2 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- Security Alert Decoration☆27Updated last month
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 8 years ago
- Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.☆23Updated this week
- Golang implementation of PyMISP-feedgenerator☆17Updated 2 years ago
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Some resources to facilitate my blog on auditd for security monitoring☆12Updated 2 years ago
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Updated 4 years ago
- ☆15Updated 5 years ago
- A script to create and assign SOP tasks into the cases☆19Updated 4 years ago
- ☆15Updated 3 years ago
- Documentation used for Shuffle☆19Updated this week
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- ☆34Updated 3 years ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- Open-source Fabric templates for cybersecurity and compliance☆19Updated 4 months ago
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆14Updated this week
- A modern CLI for Tenable.io written in Go☆14Updated 4 years ago
- ☆15Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆15Updated 9 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated last week
- Stupid Simple Detection Testing☆13Updated last year