LogCraftIO / logcraft-cli
Detection-as-Code CI/CD pipeline for modern security tools (SIEM, EDR, XDR, ...)
☆16Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for logcraft-cli
- Incident Response Report Using GitHub-Sphinx☆19Updated 5 years ago
- Using QRadar API☆20Updated 6 years ago
- ☆14Updated 4 years ago
- Workflows for Shuffle☆20Updated 2 years ago
- Notes on managing and coordinating the response to major cyber incidents☆39Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Open-source Fabric templates for cybersecurity and compliance☆13Updated 3 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆27Updated last month
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Azure Sentinel Template parser☆15Updated 4 years ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- ☆11Updated 3 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆25Updated last year
- Web based S1 query navigator for one-click threat hunting☆18Updated 3 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 3 months ago
- incident response scripts☆18Updated 5 years ago
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- Incident Response Network Tools☆23Updated 3 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆50Updated 2 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆38Updated 6 months ago
- CSIRT Jump Bag☆27Updated 6 months ago
- Build Automated Machine Images for MISP☆28Updated last year
- MITRE ATT&CK Based App in Power BI☆12Updated 9 months ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago