MSISAC / STIX-TAXII-Integration
☆28Updated 5 years ago
Alternatives and similar repositories for STIX-TAXII-Integration:
Users that are interested in STIX-TAXII-Integration are comparing it to the libraries listed below
- Carbon Black API - Python language bindings☆145Updated 6 months ago
- Salt States for Configuring the SIFT Workstation☆100Updated this week
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆216Updated last month
- Engine of MineMeld☆141Updated 2 years ago
- Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …☆130Updated last year
- ☆54Updated 3 years ago
- Powering Up Incident Response with Power-Response☆63Updated 5 years ago
- ☆39Updated 3 weeks ago
- WebUI of MineMeld☆43Updated 2 years ago
- Syslog Connector for the Carbon Black Cloud☆29Updated 5 months ago
- Security-Focused O365 Management and Log Scripts☆60Updated 2 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 10 months ago
- LogRhythm PowerShell Toolkit☆50Updated 2 months ago
- Cisco eStreamer client☆24Updated 2 years ago
- Carbon Black Feeds☆72Updated last year
- CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities☆186Updated last year
- The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365☆180Updated 4 years ago
- Implementing the CIS Critical Controls (almost) for Free☆85Updated 2 years ago
- ☆213Updated last year
- This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…☆95Updated 4 years ago
- TAXII client implementation from EclecticIQ☆99Updated 3 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆37Updated 2 years ago
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 3 months ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆125Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Prototypes for MineMeld nodes☆39Updated 3 years ago
- A Splunk app with saved reports derived from Sigma rules☆73Updated 6 years ago
- Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall☆44Updated 3 years ago
- Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.☆60Updated 5 months ago