ExtraHop / code-examples
ExtraHop public code examples
☆33Updated last month
Related projects: ⓘ
- ☆84Updated last week
- Ansible playbook for installing MineMeld on Linux☆48Updated 3 years ago
- ☆51Updated 3 years ago
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- Falcon Data Replicator☆29Updated 5 months ago
- ☆65Updated this week
- Cisco eStreamer client☆25Updated 2 years ago
- Sample programs to access the API☆57Updated 2 months ago
- WebUI of MineMeld☆43Updated last year
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- Discover for Cloud and Containers Azure☆27Updated 2 months ago
- Official Palo Alto Networks MineMeld docker☆16Updated 4 years ago
- Cisco Orbital - Osquery queries by Talos☆122Updated 3 weeks ago
- Run zeek with zeekctl in docker☆46Updated last week
- This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Cu…☆11Updated last year
- Plugin source code for the InsightConnect SOAR product, developer documentation at https://docs.rapid7.com/insightconnect/getting-started☆66Updated this week
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- MineMeld nodes for MISP☆18Updated 7 months ago
- A tool that allows you to document and assess any security automation in your SOC☆40Updated 4 months ago
- LogRhythm PowerShell Toolkit☆48Updated 11 months ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Collection of resources related to the Center for Threat-Informed Defense☆77Updated 3 months ago
- Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint sec…☆103Updated 2 months ago
- VMware Carbon Black Cloud Python SDK☆40Updated last week
- The Infosec Community Definitive Guide to Jupyter Notebooks☆108Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- Community driven repository of Playbooks and Apps for ThreatConnect.☆68Updated last month
- ☆34Updated 3 years ago
- Scripts that cover the basics of interacting with the AMP for Endpoints API☆17Updated 5 years ago
- CrowdStrike's Open Source Policy & Contribution Guide☆35Updated last year
- Run Velociraptor on Security Onion☆34Updated 2 years ago