Neo23x0 / cyber-chef-recipes
Recipes for GCHQ's CyberChef Web App
☆35Updated 6 years ago
Alternatives and similar repositories for cyber-chef-recipes:
Users that are interested in cyber-chef-recipes are comparing it to the libraries listed below
- Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.☆22Updated 6 years ago
- ☆39Updated 5 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Mass Triage Tools☆20Updated last month
- Some YARA rules i will add from time to time☆12Updated 5 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆20Updated 3 years ago
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 3 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 2 months ago
- Different DFIR and CTI utilities☆36Updated 4 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.☆15Updated 7 years ago
- Git for me to put all my forensics stuff☆21Updated 2 months ago
- Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…☆15Updated 5 years ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 3 years ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Threat Box Assessment Tool☆19Updated 3 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆26Updated 3 months ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated last month
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 3 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆21Updated 6 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆63Updated 2 years ago
- Site for IWS book content☆18Updated 6 years ago
- Random hunting ordiented yara rules☆95Updated 2 years ago