Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR Agent Alerts into Splunk.
☆13Sep 27, 2022Updated 3 years ago
Alternatives and similar repositories for TA-aurora
Users that are interested in TA-aurora are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Jul 13, 2020Updated 5 years ago
- DNS Dashboard for hunting and identifying beaconing☆16Jul 29, 2020Updated 5 years ago
- Crosswalk Nessus findings with the CISA Known and Exploited Vulnerabilities (KEV) catalog.☆12Mar 21, 2023Updated 3 years ago
- A python port of CCob's ThreadlessInject☆25Mar 18, 2023Updated 3 years ago
- really ?☆12Feb 29, 2024Updated 2 years ago
- FWT is a security analysis and file monitoring tool that utilizes Sysmon events.☆28Jul 15, 2024Updated last year
- Tool to read EVTX files including SYSMON and convert to JSON, MISP Objects and Graph stream☆12Oct 29, 2020Updated 5 years ago
- A one stop shop for all cyber tooling, frameworks and hacking methodologies☆11Jul 25, 2021Updated 4 years ago
- Blackcert monitors Certificate Transparency Logs for a keyword. Blackcert collects any certificate changes for this keyword and also chec…☆10Dec 8, 2022Updated 3 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Sep 1, 2023Updated 2 years ago
- ADSI based SA tool☆17Apr 9, 2022Updated 3 years ago
- CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)☆12Apr 18, 2018Updated 7 years ago
- This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…☆15Sep 5, 2020Updated 5 years ago
- Rogue Assembly Hunter is a utility for discovering 'interesting' .NET CLR modules in running processes.☆117Feb 9, 2022Updated 4 years ago
- Collection of generic YARA rules☆16Updated this week
- Allows viewing of nightscout CGM data in the chrome extension bar.☆15Sep 15, 2022Updated 3 years ago
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Oct 28, 2023Updated 2 years ago
- ☆11Feb 13, 2024Updated 2 years ago
- Add iOS & Android device and push notification support in your Rails application.☆12Mar 6, 2017Updated 9 years ago
- A more obfuscated CactusTorch targeted towards office☆31Feb 4, 2021Updated 5 years ago
- Bypass AMSI and Defender using Ordinal Values☆41Apr 15, 2020Updated 5 years ago
- A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…☆53Oct 29, 2025Updated 4 months ago
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 2 months ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- Fork from Milos AndroidAPS for developing a new graphical userinterface for Android APS☆16Dec 7, 2022Updated 3 years ago
- Python library for managing Arbor Peakflow SP.☆20May 26, 2016Updated 9 years ago
- ☆26Mar 10, 2022Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆54Updated this week
- Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.☆26Dec 13, 2022Updated 3 years ago
- Minimalist Custom .NET Core Garbage Collector☆23Jun 15, 2020Updated 5 years ago
- https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data☆17Jun 14, 2018Updated 7 years ago
- My personal branch of an adaptation of some parts of AAPS☆18Updated this week
- Splunk App for MITRE Att&CK Navigator(TM)☆23Mar 25, 2021Updated 4 years ago
- An npm package to defang and refang IoC☆13Sep 7, 2025Updated 6 months ago
- create a "simulated internet" cyber range environment☆19Jan 28, 2026Updated last month
- Write documentation with your code, to keep them in sync, ideal for public API docs.☆18Feb 4, 2026Updated last month
- A tool suite for use during system assessments.☆35May 29, 2025Updated 9 months ago
- ☆22Mar 5, 2018Updated 8 years ago
- Source code for the experimental, compact "wee" file compression utility.☆13May 8, 2020Updated 5 years ago