P4T12ICK / ypsilon
Automated Use Case Testing
☆167Updated 6 years ago
Alternatives and similar repositories for ypsilon:
Users that are interested in ypsilon are comparing it to the libraries listed below
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆185Updated 3 years ago
- Log Entry to Sigma Rule Converter☆107Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated 3 years ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆125Updated 2 years ago
- A Splunk app to use MISP in background☆110Updated last week
- ☆171Updated 8 months ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆351Updated 4 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆241Updated 3 years ago
- All-in-one bundle of MISP, TheHive and Cortex☆170Updated 2 years ago
- Threat Feed Aggregation, Made Easy☆167Updated 4 years ago
- Main Build directory☆179Updated 5 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆90Updated 7 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆199Updated last year
- Converts Sigma detection rules to a Splunk alert configuration.☆109Updated 4 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 6 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆140Updated last year
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 3 months ago
- Data from a BRAWL Automated Adversary Emulation Exercise☆204Updated 4 years ago
- Sigma Detection Rule Repository☆87Updated 4 years ago
- This program exports MITRE ATT&CK framework in ELK dashboard☆78Updated 2 years ago
- Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…☆179Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆123Updated 3 years ago
- ☆119Updated 3 years ago
- ☆116Updated last year