PaloAltoNetworks / Unit42-Wireshark-tutorials

Related projects ⓘ

Alternatives and complementary repositories for Unit42-Wireshark-tutorials

• pan-unit42 / wireshark-workshop
  pcaps of traffic for traffic analysis workshop
  ☆78Updated 3 years ago
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆54Updated last year
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆113Updated last month
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆142Updated last year
• archanchoudhury / Detection-Rule-Dump
  This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.
  ☆36Updated 3 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆93Updated 3 years ago
• thongsia / Public-Pcaps
  ☆42Updated 6 years ago
• corelight / threat-hunting-guide
  ☆46Updated 2 years ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆73Updated last month
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆82Updated last year
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆73Updated 4 years ago
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆87Updated 10 months ago
• markscanlonucd / ChatGPT-for-Digital-Forensics
  ☆128Updated last year
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆38Updated 2 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆72Updated last week
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆148Updated 5 months ago
• t3chn0m4g3 / t-pot-attack-map
  T-Pot Attack Map that follows ES honeypot events within T-Pot and parses IPs, ports and honeypot info to visualize events in real time.
  ☆23Updated 3 weeks ago
• Security-Onion-Solutions / securityonion-soc
  ☆46Updated this week
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆315Updated 3 months ago
• cisagov / ACID
  ☆66Updated 2 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆174Updated 3 weeks ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆122Updated 6 months ago
• dfir-scripts / siftgrab
  ☆56Updated 2 weeks ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆315Updated last week
• rjbhide / wireshark-forensics-plugin
  ☆90Updated 3 years ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated this week