InQuest / python-inquestlabs

Related projects: ⓘ

• CyberMonitor / Invoke-Adversary
  Simulating Adversary Operations
  ☆93Updated 6 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆41Updated 10 months ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 3 years ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆62Updated last year
• fozavci / ta505plus
  TA505+ Adversary Simulation
  ☆64Updated 3 years ago
• IronNetCybersecurity / IronNetTR
  ☆37Updated this week
• lsoumille / Yara_Merger
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆28Updated 6 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆24Updated 4 years ago
• SecurityRiskAdvisors / RedTeamSIEM
  Repository of resources for configuring a Red Team SIEM using Elastic
  ☆97Updated 6 years ago
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆37Updated last year
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆74Updated 2 years ago
• la3ar0v / TuxResponse
  Linux Incident Response
  ☆89Updated 4 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 2 years ago
• mandiant / goauditparser
  ☆42Updated last year
• clong / detect-responder
  ☆76Updated 6 years ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated last year
• Silv3rHorn / evtx2json
  evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
  ☆41Updated 3 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆96Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆107Updated 5 years ago
• mosse-security / tactical-lab
  A curated list of tools, papers and techniques for Windows exploitation and incident response.
  ☆40Updated 8 years ago
• olafhartong / detection-sources
  ☆52Updated 5 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆205Updated last year
• Ebryx / aws-threathunting
  Projects for AWS ThreatHunting
  ☆21Updated 3 years ago
• cedowens / C2-JARM
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆136Updated last year
• ninoseki / uzen
  Website crawler with YARA detection
  ☆87Updated last year
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆49Updated 2 months ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆75Updated 3 years ago
• Th1ru-M / Windows-Threat-Hunting
  Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine
  ☆22Updated 3 years ago