JPMinty / Detection_Engineering_SignaturesLinks
YARA, SIGMA, SNORT Rules based on Malware Analysis
☆16Updated 6 months ago
Alternatives and similar repositories for Detection_Engineering_Signatures
Users that are interested in Detection_Engineering_Signatures are comparing it to the libraries listed below
Sorting:
- Library of threat hunts to get any user started!☆45Updated 5 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆56Updated 8 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆114Updated last year
- ☆22Updated 2 years ago
- CarbonBlack EDR detection rules and response actions☆73Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated 2 months ago
- User Feedback Space of #MitreAssistant☆38Updated 2 years ago
- ☆67Updated 2 months ago
- The Threat Actor Profile Guide for CTI Analysts☆115Updated 2 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆88Updated 9 months ago
- Sample evtx files to use for testing hayabusa detection rules☆62Updated last week
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 3 years ago
- Cyber Underground General Intelligence Requirements☆96Updated last year
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated 2 years ago
- A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…☆28Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 11 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- Digital Forensics Artifacts Knowledge Base☆88Updated last month
- Random notes collected on the intertubes relating to DFIR☆34Updated 2 years ago
- Remote access and Antivirus Logging Database☆43Updated last year
- Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes☆21Updated 3 years ago
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆29Updated 10 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆51Updated 6 months ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- ☆68Updated 2 weeks ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆51Updated 2 years ago
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆52Updated last year
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated 2 years ago