Mohammad-Mirasadollahi / ThinkingSOCLinks
A new era for SOCs begins
☆23Updated 6 months ago
Alternatives and similar repositories for ThinkingSOC
Users that are interested in ThinkingSOC are comparing it to the libraries listed below
Sorting:
- Mapping of open-source detection rules and atomic tests.☆189Updated 10 months ago
- A collection of methods to learn who the owner of an IP address is.☆180Updated 2 months ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆58Updated 5 months ago
- A tool for mapping cyber crime☆223Updated 7 months ago
- ☆117Updated 6 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆140Updated this week
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆133Updated 2 weeks ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- Security automation with n8n ideas: 100+ Red/Blue/AppSec workflows, integrations, and ready-to-run playbooks.☆213Updated 2 months ago
- ShellSweeping the evil.☆181Updated last year
- Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated d…☆254Updated this week
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆189Updated 2 weeks ago
- An offline Phishing Email Analyzer. Enabling non-techies to analyze phishing emails automatically!☆63Updated 2 years ago
- This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team☆20Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆191Updated 11 months ago
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆391Updated last month
- Splunk add-on related to the PurpleLab tool☆41Updated last year
- RedAudit is a next-generation Windows forensic and security assessment framework featuring a live cyber-operations GUI built for real inv…☆32Updated 3 weeks ago
- Track C2 servers, tools, and botnets over time by framework and location☆43Updated 10 months ago
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆32Updated 9 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated 2 years ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆96Updated this week
- Finding ClickFix and FakeCAPTCHA like it's 1999☆108Updated last week
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆81Updated 7 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆184Updated 10 months ago
- NOVA: The Prompt Pattern Matching☆57Updated last month
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group☆86Updated 10 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆434Updated this week
- ☆35Updated last year