NextronSystems / simplesyslog

Related projects ⓘ

Alternatives and complementary repositories for simplesyslog

• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆24Updated 4 years ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 4 years ago
• c2defense / windows-event-collection
  Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model
  ☆12Updated 3 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 5 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 6 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆16Updated 3 years ago
• mandiant / goauditparser
  ☆43Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 2 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated last week
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last year
• refractionPOINT / rules
  Public rules and samples for various automations through LimaCharlie.io
  ☆11Updated 2 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 3 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆28Updated last year
• indeedsecurity / carbonbeat
  event shipper for Carbon Black Defense notifications
  ☆10Updated last year
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 2 years ago
• ajackal / ir_scripts
  incident response scripts
  ☆18Updated 5 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• wietze / bsides-ldn-2019
  Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA
  ☆22Updated 5 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• zshehri / MITRE_EDR_Eval
  Parsing MITRE EDR Evaluation results
  ☆12Updated 5 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• notx11 / urlScan2Hive
  Triage automation for suspect URLs
  ☆12Updated 5 years ago