Karneades / Defensomania
Defensomania is a security monitoring and incident response card game.
☆58Updated last year
Related projects: ⓘ
- A collection of typical false positive indicators☆54Updated 3 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆55Updated 2 years ago
- CSIRT Jump Bag☆26Updated 4 months ago
- Recon Hunt Queries☆76Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- ☆28Updated last year
- automate your MISP installs☆66Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆51Updated 3 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆43Updated 2 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆16Updated 3 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 2 years ago
- Site for IWS book content☆18Updated 5 years ago
- ☆12Updated 4 years ago
- Best practices in threat intelligence☆46Updated last year
- A script to create and assign SOP tasks into the cases☆18Updated 4 years ago
- misp-cloud - Cloud-ready images of MISP☆70Updated 2 years ago
- SightingDB is a database for Sightings☆21Updated last year
- Defence Against the Dark Arts☆34Updated 5 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆15Updated last year
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- ☆40Updated this week
- ☆14Updated 6 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated last week
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago