CybercentreCanada / assemblyline4_docs

Related projects ⓘ

Alternatives and complementary repositories for assemblyline4_docs

• CybercentreCanada / assemblyline
  AssemblyLine 4: File triage and malware analysis
  ☆249Updated this week
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆157Updated last year
• StrangerealIntel / EternalLiberty
  ☆190Updated last year
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆136Updated 3 months ago
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆258Updated 11 months ago
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆179Updated 2 months ago
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆123Updated 8 months ago
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆189Updated 3 weeks ago
• ReconInfoSec / velociraptor-to-timesketch
  ☆1Updated 3 weeks ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆111Updated 2 weeks ago
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆67Updated this week
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆109Updated last year
• AndrewRathbun / VanillaWindowsReference
  A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …
  ☆146Updated last month
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆116Updated 11 months ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆98Updated 2 months ago
• UraSecTeam / mordor
  Re-play Adversarial Techniques
  ☆26Updated 3 years ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆94Updated last year
• Kirtar22 / ThreatHunting_with_Osquery
  Threat Hunting & Incident Investigation with Osquery
  ☆198Updated 2 years ago
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆49Updated 3 weeks ago
• Errum / IntelArchitectureMap
  Intelligence Architecture Mind Map
  ☆117Updated 8 months ago
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆203Updated 2 weeks ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆103Updated 5 months ago
• triw0lf / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆139Updated this week
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆97Updated last year
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆168Updated last year
• vadim-hunter / Detection-Ideas-Rules
  Detection Ideas & Rules repository.
  ☆178Updated 3 years ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆104Updated 2 weeks ago
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆97Updated this week
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆153Updated 2 years ago