MishcondeReya / Covid-19-CTI

Related projects: ⓘ

• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆27Updated 7 years ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 4 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆32Updated 7 months ago
• EbryxLabs / __DFIR-scripts
  Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment
  ☆14Updated 2 months ago
• sans-blue-team / sec555-mdwiki-v1
  ☆10Updated 3 years ago
• Neo23x0 / YARA-rules
  Some YARA rules i will add from time to time
  ☆12Updated 5 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• Mostafayahia-hunter / Virustotal-python-API-Domains-IPs-and-URLs-
  ☆21Updated 3 years ago
• GreyNoise-Intelligence / greynoise-maltego
  GreyNoise Maltego integration and transforms
  ☆19Updated last year
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated last year
• JCyberSec / CTIURLScan
  CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, auto…
  ☆11Updated 3 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 4 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆47Updated 9 months ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 3 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 3 years ago
• deadbits / mimir
  ☆21Updated this week
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆25Updated 7 years ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 4 years ago
• securifera / MaltegoNessusParser
  Maltego transform for visualizing Nessus scan data
  ☆44Updated 4 years ago
• cloud-sniper / cloud-droid
  ☆56Updated this week
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆30Updated 2 years ago
• mandiant / DFUR-Splunk-App
  The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.
  ☆12Updated 4 years ago
• sans-blue-team / sec455-wiki
  ☆28Updated 5 years ago
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆30Updated 5 years ago
• redhuntlabs / Maltego-Scripts
  ☆33Updated 6 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 8 years ago
• open-source-rs / The-Cyber-Intelligence-Analyst-Cookbook
  For storing of the volumes
  ☆3Updated 4 years ago
• vadim-hunter / Threat-Hunters-KB
  Threat Hunter's Knowledge Base
  ☆21Updated 2 years ago