PaloAltoNetworks / cis-benchmarksLinks
CIS benchmark quickplay for rapid assessments of the NGFW
☆13Updated last year
Alternatives and similar repositories for cis-benchmarks
Users that are interested in cis-benchmarks are comparing it to the libraries listed below
Sorting:
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Collection of Dashboards for Threat Hunting and more!☆68Updated 4 years ago
- Sample data generator for the Splunk for Palo Alto Networks app.☆11Updated 8 years ago
- Official Palo Alto Networks MineMeld docker☆17Updated 5 years ago
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated 3 months ago
- This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Cu…☆11Updated 2 years ago
- Skillets is the default holding place for useful Panhandler skillets. These are usually smaller one-off bits that may not require their o…☆11Updated 5 years ago
- Palo Alto Networks Rule Parser☆16Updated 8 years ago
- ☆16Updated 2 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Workflows for Shuffle☆23Updated 2 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Updated 3 years ago
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆32Updated 2 years ago
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆23Updated 4 months ago
- Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…☆37Updated 4 years ago
- Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint sec…☆107Updated 8 months ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- ☆17Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆10Updated last year
- OpenIOC rules to facilitate hunting for indicators of compromise☆37Updated 3 years ago
- AIL project training materials☆30Updated 2 weeks ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated 10 months ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- ☆65Updated 3 months ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- A script to create and assign SOP tasks into the cases☆19Updated 4 years ago