Fallenour / VenatorLinks
Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and firewall search, collects screenshots, generates report, injects captured artifacts into report, saves generated report with artifacts into a specified directory
☆21Updated 8 years ago
Alternatives and similar repositories for Venator
Users that are interested in Venator are comparing it to the libraries listed below
Sorting:
- ☆76Updated 7 years ago
- ☆53Updated 7 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Create an incident response triage toolkit for use with Windows or Linux.☆18Updated 5 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…☆55Updated 9 months ago
- Expert Investigation Guides☆52Updated 4 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆51Updated 6 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- A tool to catch spoofed NBNS responses.☆50Updated 7 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 7 years ago
- ☆30Updated 6 years ago
- Site for IWS book content☆18Updated 6 years ago
- Identify compromised domains or emails. A python based HIBP and HackedEmails wrapper☆38Updated 6 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- ☆54Updated 4 years ago
- Python bindings for Yeti's API☆18Updated last year
- mindmap created for tools can be used during analysis/investigation☆27Updated 8 years ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- 504 VSAgent☆23Updated 7 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- This repository is a curated list of pro bono incident response entities.☆21Updated 2 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Netwitness Maltego integration Project☆18Updated 8 years ago