Fallenour / VenatorLinks
Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and firewall search, collects screenshots, generates report, injects captured artifacts into report, saves generated report with artifacts into a specified directory
☆21Updated 8 years ago
Alternatives and similar repositories for Venator
Users that are interested in Venator are comparing it to the libraries listed below
Sorting:
- ☆53Updated 7 years ago
- ☆76Updated 7 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- ☆30Updated 6 years ago
- Create an incident response triage toolkit for use with Windows or Linux.☆18Updated 5 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆50Updated 6 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 7 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆42Updated 6 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 7 years ago
- ☆55Updated 5 years ago
- 504 VSAgent☆24Updated 7 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- pollen - A command-line tool for interacting with TheHive☆36Updated 6 years ago
- ☆13Updated 6 years ago
- Threat Intel and Incident Reponse☆10Updated 7 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆48Updated 7 years ago
- PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…☆55Updated 11 months ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- A tool to catch spoofed NBNS responses.☆50Updated 7 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Site for IWS book content☆17Updated 6 years ago
- Python bindings for Yeti's API☆18Updated 2 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Lutech TMS EHAT-NG☆14Updated 8 years ago
- Expert Investigation Guides☆51Updated 4 years ago