Neo23x0 / ThreatResearch-Reporting-GuideLinks
Offensive Research Guide to Help Defense Improve Detection
☆31Updated 2 years ago
Alternatives and similar repositories for ThreatResearch-Reporting-Guide
Users that are interested in ThreatResearch-Reporting-Guide are comparing it to the libraries listed below
Sorting:
- A home for detection content developed by the delivr.to team☆69Updated 2 weeks ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆28Updated 2 years ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Updated last year
- ☆14Updated 2 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- ☆11Updated 2 years ago
- ShellSweeping the evil.☆53Updated last year
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 8 months ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- C2 Active Scanner☆59Updated last year
- Repository that contains a set of purposefully erroneous Yara rules.☆58Updated 2 weeks ago
- Quick ESXi Log Parser☆24Updated 7 months ago
- Slides and materials from conference presentations☆9Updated last year
- Library of threat hunts to get any user started!☆44Updated 4 years ago
- ☆16Updated 4 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- Can you pay the ransom in your country?☆14Updated last year
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆34Updated 3 months ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆12Updated 6 years ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆68Updated last month
- Public tools, scripts or code snippets that can help when working with our products☆46Updated 3 months ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 6 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated last year