Parses the FireEye HX .mans triage collections and sends them to ElasticSearch
☆17Feb 17, 2023Updated 3 years ago
Alternatives and similar repositories for mans_to_es
Users that are interested in mans_to_es are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Virustotal Data to Timesketch☆16Feb 28, 2019Updated 7 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- Python API for the LimaCharlie.io service.☆23May 31, 2026Updated 2 weeks ago
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 9 years ago
- HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…☆89Jun 27, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Validates yara rules and tries to repair the broken ones.☆42Sep 5, 2020Updated 5 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Generate bulk YARA rules from YAML input☆22Feb 3, 2020Updated 6 years ago
- A Python script for indexing (putting) FireEye alert data into Elasticsearch...and notifying you too.☆16Dec 11, 2018Updated 7 years ago
- Walking the PEB in VBA☆24Apr 6, 2020Updated 6 years ago
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆23Jun 6, 2017Updated 9 years ago
- PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting☆23Oct 26, 2019Updated 6 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 7 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Feb 5, 2021Updated 5 years ago
- EmailScanner is an integration application in python that uses `exchangelib` to process mail items in Microsoft exchange.☆12Apr 9, 2019Updated 7 years ago
- To stop the all seeing eye of Sauron and make your MacBook operate as it should be.☆27Apr 19, 2026Updated last month
- CTF designed for Middle School-aged kids☆12Oct 18, 2024Updated last year
- Publicly shareable windows event log message data☆29Nov 29, 2019Updated 6 years ago
- PowerShell Module for the Antimalware Scan Interface (AMSI)☆25Oct 26, 2016Updated 9 years ago
- ☆36Updated this week
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 9 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A scanner to detect the use of stolen FireEye red team tools☆20Dec 18, 2020Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Mar 13, 2018Updated 8 years ago
- A rewrite of mactime, a bodyfile reader☆41Aug 5, 2024Updated last year
- LaTeX Report Template for Offensive Security's OSCP Exam.☆14Mar 13, 2022Updated 4 years ago
- Write-ups for FireEye's FLARE-On challenges☆25Aug 8, 2019Updated 6 years ago
- STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling☆33Dec 9, 2024Updated last year
- Bypass AMSI and Defender using Ordinal Values☆41Apr 15, 2020Updated 6 years ago
- Regular expression Search on the command-line☆16Mar 31, 2025Updated last year
- ☆15Jul 26, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Django Tasks Manager - Simple Celery Integration | AppSeed☆14Nov 1, 2022Updated 3 years ago
- ☆10Feb 25, 2021Updated 5 years ago
- Mimikatz HashClash☆12May 8, 2015Updated 11 years ago
- PoC compilation of libyara into WASM, for potential future CyberChef integration☆14Sep 18, 2022Updated 3 years ago
- IDAPython scripts☆15Aug 24, 2017Updated 8 years ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- A Riak (nosql) backend for Django☆37Dec 22, 2011Updated 14 years ago