RESOLVN / RTHVM
Resolvn Threat Hunting Virtual Machine
☆138Updated 5 years ago
Alternatives and similar repositories for RTHVM:
Users that are interested in RTHVM are comparing it to the libraries listed below
- This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…☆95Updated 4 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated last week
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- An ELK environment containing interesting security datasets.☆135Updated 4 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆125Updated 2 years ago
- All-in-one bundle of MISP, TheHive and Cortex☆170Updated 2 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆99Updated 4 years ago
- Tools to automate and/or expedite response.☆113Updated 8 months ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆90Updated 7 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…☆179Updated 3 years ago
- Simulates common user behaviour on local and remote Windows hosts.☆282Updated 6 years ago
- Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments☆395Updated last year
- Web application to create indexes for GIAC certification examinations.☆136Updated last year
- The PoLRBear Project☆35Updated 4 years ago
- Automated Use Case Testing☆167Updated 6 years ago
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 3 months ago
- Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC☆60Updated 3 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆107Updated 4 years ago
- ☆172Updated 9 months ago
- Main Build directory☆179Updated 5 years ago
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.☆89Updated 11 months ago