LTW-GCR-CSOC / csoc-installation-scripts
GCR - Cybersecurity Operations Center Project
☆15Updated 5 years ago
Related projects: ⓘ
- ☆28Updated 5 years ago
- Deploy MISP Project software with Vagrant.☆42Updated 4 years ago
- Security Onion Elastic Stack☆46Updated 3 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- ☆19Updated this week
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- ☆66Updated this week
- Presentation Slides and Video links☆31Updated 2 years ago
- Zeek package to generate a SMB client fingerprint☆26Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- ☆12Updated 4 years ago
- A simple Docker container that serves the MITRE ATT&CK Navigator web app☆27Updated last year
- TITO is a light framework for operationalizing threat intelligence that is platform and data agnostic.☆20Updated 4 years ago
- Docker Container to deploy Mitre Caldera Automated Adversary Emulation System☆24Updated 3 years ago
- automate your MISP installs☆66Updated 4 years ago
- Build your own threat hunting maturity model☆12Updated 6 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 4 years ago
- Best practices in threat intelligence☆46Updated last year
- ☆50Updated 6 years ago
- mindmap created for tools can be used during analysis/investigation☆26Updated 7 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆14Updated 8 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆36Updated last year
- The Fastest way to consume Threat Intel☆25Updated 2 years ago
- ☆33Updated 3 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆30Updated last year
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago