CybercentreCanada / assemblyline-v4-serviceLinks
Base service class from Assemblyline 4
☆16Updated this week
Alternatives and similar repositories for assemblyline-v4-service
Users that are interested in assemblyline-v4-service are comparing it to the libraries listed below
Sorting:
- Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)☆69Updated this week
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 4 months ago
- Caldera plugin to deploy "humans" to emulate user behavior on systems☆28Updated last year
- Documentation site for Velociraptor☆52Updated this week
- Remote access and Antivirus Logging Database☆42Updated last year
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆21Updated this week
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆28Updated 2 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆54Updated 3 years ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year
- Hatching Triage public command-line utility and API library.☆71Updated last year
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated 3 months ago
- Converting data from services like Censys and Shodan to a common data model☆50Updated 2 months ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- pySigma Splunk backend☆41Updated 3 weeks ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆105Updated last year
- OpenCTI Documentation Space☆24Updated this week
- Information about the open-source-dfir slack community☆30Updated 2 years ago
- Incident Response Network Tools☆24Updated 4 years ago
- Python library for threat intelligence☆88Updated 8 months ago
- Web interface and APIs for Assemblyline 4☆20Updated this week
- Python based CLI for MalwareBazaar☆37Updated last month
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆66Updated 2 years ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆47Updated 3 years ago
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆26Updated 4 months ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆21Updated 4 years ago
- OSSEM Data Dictionaries☆62Updated 7 months ago
- Random hunting ordiented yara rules☆97Updated 2 years ago