SCS-Labs / TheWatchListLinks
Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
☆16Updated 4 years ago
Alternatives and similar repositories for TheWatchList
Users that are interested in TheWatchList are comparing it to the libraries listed below
Sorting:
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Pure Honeypots with an automated bash script☆20Updated 3 years ago
- Resources and Discussions About Detection Engineering☆12Updated 2 years ago
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Updated 3 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆21Updated 4 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 6 months ago
- ☆11Updated 4 years ago
- PowerShell Post-exploitation agent based on Mitre Att&ck framework☆12Updated 2 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- Log4Shell IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆18Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Threat Mitigation Strategies☆25Updated last year
- Automated Static Analysis Framework☆9Updated 3 years ago
- Look into EDR events from network☆23Updated last month
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Kibana app for RedELK☆17Updated 2 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- ☆42Updated last year
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.☆24Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- ☆12Updated 3 years ago
- A collection of Sigma rules organized by MITRE ATT&CK technique☆17Updated 3 years ago
- Collection of exploits that were verified by an automated system☆13Updated 3 years ago