PacktPublishing / Incident-Response-with-Threat-Intelligence

Related projects: ⓘ

• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆42Updated 3 months ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆85Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆89Updated last year
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆81Updated last year
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆68Updated 9 months ago
• PacktPublishing / Threat-Hunting-with-Elastic-Stack
  Threat Hunting with Elastic Stack, Published by Packt
  ☆38Updated last year
• center-for-threat-informed-defense / top-attack-techniques
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆115Updated last month
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆58Updated 2 years ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆120Updated 2 years ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆108Updated 5 months ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆62Updated last year
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆113Updated 9 months ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆105Updated last year
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆84Updated last year
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆75Updated 3 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆90Updated 10 months ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆69Updated this week
• Resistor52 / DockerCrashCourse
  Docker Crash Course: How to containerize your favorite security tools
  ☆27Updated last year
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• target / Threat-Hunting
  Detection of obfuscated Powershell commands
  ☆53Updated last year
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆70Updated last week
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆73Updated 2 years ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆84Updated 8 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆81Updated 3 weeks ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆163Updated last year
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆157Updated 6 years ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆105Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆167Updated 3 weeks ago
• TheHive-Project / DigitalShadows2TH
  DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆35Updated 5 years ago