Fallenour / Venator
Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and firewall search, collects screenshots, generates report, injects captured artifacts into report, saves generated report with artifacts into a specified directory
☆21Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for Venator
- 504 VSAgent☆23Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- ☆29Updated 6 years ago
- Scripts to help hunt for possible golden/silver TGT tickets☆16Updated 7 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- ☆76Updated 6 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- mindmap created for tools can be used during analysis/investigation☆27Updated 7 years ago
- incident response scripts☆18Updated 5 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Use DNS to hunt for threats including DGAs☆14Updated 8 years ago
- Site for IWS book content☆18Updated 6 years ago
- A companion tool for BloodHound offering Active Directory statistics and number crunching☆64Updated 6 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 6 years ago
- Six Degrees of Domain Admin☆15Updated 7 years ago
- Create an incident response triage toolkit for use with Windows or Linux.☆17Updated 4 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Lutech TMS EHAT-NG☆14Updated 7 years ago
- PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…☆53Updated this week
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- A powershell script that prints a lot of IP and connection info to the screen☆30Updated 7 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆40Updated 6 years ago
- A collection of scripts that I've written while pentesting.☆31Updated 6 years ago
- ☆25Updated 7 years ago
- A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.☆15Updated 5 years ago
- Build your own threat hunting maturity model☆12Updated 7 years ago