NextronSystems / thor_attck
THOR MITRE ATT&CK Framework Coverage
☆24Updated 4 years ago
Alternatives and similar repositories for thor_attck:
Users that are interested in thor_attck are comparing it to the libraries listed below
- OSSEM Modular☆27Updated 4 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…☆15Updated 5 years ago
- Mass Triage Tools☆20Updated last month
- ☆44Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Use DNS to hunt for threats including DGAs☆15Updated 9 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 3 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- Site for IWS book content☆18Updated 6 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Triage automation for suspect URLs☆12Updated 5 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Updated 4 years ago
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆48Updated last year
- ☆41Updated 11 months ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Tweettioc Splunk App☆20Updated 4 years ago
- Collection of YARA signatures from individual research☆43Updated last year
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Audit Powershell and search from known keywords in history #Blueteam☆25Updated 4 years ago