P4T12ICK / ypsilon
Automated Use Case Testing
☆167Updated 6 years ago
Alternatives and similar repositories for ypsilon:
Users that are interested in ypsilon are comparing it to the libraries listed below
- All-in-one bundle of MISP, TheHive and Cortex☆170Updated 2 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- A Splunk app to use MISP in background☆110Updated last month
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆125Updated 2 years ago
- Searches For Threat Hunting and Security Analytics☆240Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆123Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆185Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆241Updated 3 years ago
- Log Entry to Sigma Rule Converter☆107Updated 3 years ago
- ☆116Updated last year
- Data from a BRAWL Automated Adversary Emulation Exercise☆204Updated 4 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- ☆118Updated 3 years ago
- ☆170Updated 8 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆109Updated 4 years ago
- Main Build directory☆178Updated 5 years ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆350Updated 4 years ago
- An ELK environment containing interesting security datasets.☆134Updated 4 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 2 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆90Updated 7 years ago
- Threat Feed Aggregation, Made Easy☆167Updated 4 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆197Updated last year
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆85Updated 2 years ago
- ATT&CK Remote Threat Hunting Incident Response