KPN-CISO / AttackMatrix
AttackMatrix is a Python module and/or webpage to interact with and explore MITRE's ATT&CK's matrices.
☆17Updated last year
Alternatives and similar repositories for AttackMatrix:
Users that are interested in AttackMatrix are comparing it to the libraries listed below
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated last year
- ☆50Updated 6 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- ☆24Updated 2 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- SightingDB is a database for Sightings☆22Updated last year
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Data related to the SANS Internet Storm Center☆10Updated 6 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆47Updated 3 years ago
- Dashboards for conducting forensic investigation using windows events in Kibana☆17Updated 5 years ago
- Modular command-line threat hunting tool & framework.☆17Updated 4 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- Site for IWS book content☆18Updated 6 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Simple tool to find the yara matches on a file☆1Updated 6 years ago
- This repository maintains the SaltStack state files for the REMnux distro.☆43Updated last month
- A collection of typical false positive indicators☆55Updated 4 years ago
- A YARA Rule Performance Measurement Tool☆58Updated last year
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- mindmap created for tools can be used during analysis/investigation☆27Updated 8 years ago
- Triage automation for suspect URLs☆13Updated 5 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆55Updated 2 months ago