Parses the FireEye HX .mans triage collections and sends them to ElasticSearch
☆17Feb 17, 2023Updated 3 years ago
Alternatives and similar repositories for mans_to_es
Users that are interested in mans_to_es are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Virustotal Data to Timesketch☆16Feb 28, 2019Updated 7 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- Python API for the LimaCharlie.io service.☆23Updated this week
- HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…☆88Jun 27, 2024Updated last year
- Lockheed Martin developed utility to combine multiple CycloneDX SBOMs☆13Jan 16, 2023Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Validates yara rules and tries to repair the broken ones.☆41Sep 5, 2020Updated 5 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Generate bulk YARA rules from YAML input☆22Feb 3, 2020Updated 6 years ago
- A Python script for indexing (putting) FireEye alert data into Elasticsearch...and notifying you too.☆16Dec 11, 2018Updated 7 years ago
- Walking the PEB in VBA☆24Apr 6, 2020Updated 6 years ago
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆23Jun 6, 2017Updated 8 years ago
- PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting☆23Oct 26, 2019Updated 6 years ago
- ☆50Aug 11, 2023Updated 2 years ago
- Lockheed Martin developed utility to compare two CycloneDX SBOMs☆19Oct 21, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 7 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Feb 5, 2021Updated 5 years ago
- EmailScanner is an integration application in python that uses `exchangelib` to process mail items in Microsoft exchange.☆12Apr 9, 2019Updated 7 years ago
- To stop the all seeing eye of Sauron and make your MacBook operate as it should be.☆27Apr 19, 2026Updated 2 weeks ago
- CTF designed for Middle School-aged kids☆12Oct 18, 2024Updated last year
- Publicly shareable windows event log message data☆29Nov 29, 2019Updated 6 years ago
- PowerShell Module for the Antimalware Scan Interface (AMSI)☆25Oct 26, 2016Updated 9 years ago
- ☆35Updated this week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- Reflex SOAR☆12Apr 1, 2022Updated 4 years ago
- The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activ…☆17Jun 25, 2025Updated 10 months ago
- A scanner to detect the use of stolen FireEye red team tools☆20Dec 18, 2020Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Mar 13, 2018Updated 8 years ago
- A rewrite of mactime, a bodyfile reader☆41Aug 5, 2024Updated last year
- LaTeX Report Template for Offensive Security's OSCP Exam.☆14Mar 13, 2022Updated 4 years ago
- Write-ups for FireEye's FLARE-On challenges☆25Aug 8, 2019Updated 6 years ago
- STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling☆33Dec 9, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Simple method to extract .unitypackage files, since it seems to blow up unity on occasion and if you have lots of assets there is a good …☆46Nov 10, 2016Updated 9 years ago
- Bypass AMSI and Defender using Ordinal Values☆41Apr 15, 2020Updated 6 years ago
- Regular expression Search on the command-line☆16Mar 31, 2025Updated last year
- ☆14Jul 26, 2024Updated last year
- Django Tasks Manager - Simple Celery Integration | AppSeed☆14Nov 1, 2022Updated 3 years ago
- ☆10Feb 25, 2021Updated 5 years ago
- Mimikatz HashClash☆12May 8, 2015Updated 10 years ago