CybercentreCanada / assemblyline4_docs
AssemblyLine4 documentation
☆28Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for assemblyline4_docs
- AssemblyLine 4: File triage and malware analysis☆249Updated this week
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆157Updated last year
- ☆190Updated last year
- The Sigma command line interface based on pySigma☆136Updated 3 months ago
- A python script developed to process Windows memory images based on triage type.☆258Updated 11 months ago
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆179Updated 2 months ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆123Updated 8 months ago
- Rules generated from our investigations.☆189Updated 3 weeks ago
- ☆1Updated 3 weeks ago
- Sigma rule specification☆111Updated 2 weeks ago
- Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)☆67Updated this week
- Repository of public reference frameworks for the DFIR community.☆109Updated last year
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆146Updated last month
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆98Updated 2 months ago
- Re-play Adversarial Techniques☆26Updated 3 years ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆94Updated last year
- Threat Hunting & Incident Investigation with Osquery☆198Updated 2 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆49Updated 3 weeks ago
- Intelligence Architecture Mind Map☆117Updated 8 months ago
- Sigma rules from Joe Security☆203Updated 2 weeks ago
- JPCERT/CC public YARA rules repository☆103Updated 5 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆139Updated this week
- The Threat Actor Profile Guide for CTI Analysts☆97Updated last year
- Resources To Learn And Understand SIGMA Rules☆168Updated last year
- Detection Ideas & Rules repository.☆178Updated 3 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated 2 weeks ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆97Updated this week
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆153Updated 2 years ago