P4T12ICK / ypsilonLinks
Automated Use Case Testing
☆167Updated 7 years ago
Alternatives and similar repositories for ypsilon
Users that are interested in ypsilon are comparing it to the libraries listed below
Sorting:
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and style☆241Updated 4 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- A Splunk app to use MISP in background☆111Updated this week
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆246Updated 4 years ago
- Data from a BRAWL Automated Adversary Emulation Exercise☆210Updated 4 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated 4 months ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆189Updated 4 years ago
- Log Entry to Sigma Rule Converter☆108Updated 3 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 4 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆129Updated 2 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 7 years ago
- ☆174Updated last year
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated 2 years ago
- Main Build directory☆179Updated 6 years ago
- ☆122Updated 3 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆91Updated 7 years ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆117Updated 4 years ago
- Sigma Detection Rule Repository☆89Updated 5 years ago
- Threat Feed Aggregation, Made Easy☆168Updated 5 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- ☆116Updated last year
- Dump of organized knowledge on DFIR☆135Updated 3 years ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆352Updated 4 years ago