CybercentreCanada / assemblyline4_docs
AssemblyLine4 documentation
☆29Updated this week
Alternatives and similar repositories for assemblyline4_docs:
Users that are interested in assemblyline4_docs are comparing it to the libraries listed below
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆163Updated last year
- ☆5Updated 4 months ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆107Updated last year
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆53Updated last week
- The Sigma command line interface based on pySigma☆147Updated 3 weeks ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆132Updated last year
- Rules generated from our investigations.☆192Updated this week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆118Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆107Updated last year
- Sigma rules from Joe Security☆207Updated 4 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆76Updated 4 months ago
- A python script developed to process Windows memory images based on triage type.☆261Updated last year
- A repository of my own Sigma detection rules.☆157Updated 6 months ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆207Updated 3 weeks ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆215Updated this week
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆197Updated 6 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆101Updated 3 weeks ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated last week
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- A (nearly) production ready Dockered MISP☆231Updated last year
- ☆200Updated last year
- Dettectinator - The Python library to your DeTT&CT YAML files.☆109Updated 2 months ago
- Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)☆69Updated this week
- Repository of public reference frameworks for the DFIR community.☆115Updated last year
- An opensource sigma conversion tool built using pysigma☆121Updated 3 months ago
- AssemblyLine 4: File triage and malware analysis☆290Updated this week
- pySigma Elasticsearch backend☆50Updated this week
- BlackBerry Threat Research & Intelligence☆98Updated last year
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆144Updated last month
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆110Updated 4 months ago