DevoInc / pCraft

Related projects: ⓘ

• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆14Updated 5 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• TTP0 / ttp0_community_templates
  ☆31Updated 10 months ago
• SMAPPER / MimikatzHoneyToken
  This is a logon script used to detect the theft of credentials by tools such as Mimikatz
  ☆116Updated 9 years ago
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 3 years ago
• SparkITSolutions / phoenix
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆106Updated 4 years ago
• jzadeh / aktaion2
  Aktaion is a machine learning open source & active defense (orchestration) prototype. The tool focuses on the detection of exploits based…
  ☆47Updated last year
• eddiez9 / sans-ondemand-download
  ☆44Updated this week
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago
• d3sre / Use_Case_Applicability
  Security Monitoring Resolution Categories
  ☆138Updated 2 years ago
• Robicus / gse-study
  The gse-study repo was assembled to serve as a consolidated, and comprehensive, study solution for the SANS GSE exam.
  ☆25Updated 5 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆54Updated 3 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆41Updated 8 years ago
• ekiojp / circo
  Cisco Implant Raspberry Controlled Operations
  ☆50Updated last year
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆59Updated 9 months ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆131Updated 4 years ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆74Updated 4 years ago
• CheckPointSW / Cuckoo-AWS
  Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…
  ☆134Updated 2 years ago
• RESOLVN / RTHVM
  Resolvn Threat Hunting Virtual Machine
  ☆135Updated 5 years ago
• d3vzer0 / reternal-quickstart
  Repo containing docker-compose files and setup scripts without having to clone the individual reternal components
  ☆107Updated 3 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆107Updated 6 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆70Updated 2 years ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆72Updated 6 years ago
• debernal / talks
  ☆23Updated 4 years ago
• JYVSECTEC / PHR-model
  Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC
  ☆60Updated 2 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆86Updated 2 years ago
• MotiBa / Invoke-Adversary
  ☆35Updated this week
• krakow2600 / atomic-threat-coverage
  The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
  ☆23Updated 5 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆207Updated 2 years ago