STIXProject / use-casesLinks
☆13Updated 9 years ago
Alternatives and similar repositories for use-cases
Users that are interested in use-cases are comparing it to the libraries listed below
Sorting:
- Performs OCR on image files and scans them for matches to YARA rules☆42Updated 6 years ago
- Malware/IOC ingestion and processing engine☆107Updated 6 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆21Updated 8 years ago
- An extensible honeypot framework☆96Updated 3 years ago
- A set of templates for documenting threat intelligence☆75Updated 12 years ago
- Presentation Slides and Video links☆32Updated 3 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communities☆66Updated 2 years ago
- Aktaion is a machine learning open source & active defense (orchestration) prototype. The tool focuses on the detection of exploits based…☆50Updated 2 years ago
- Repository of yara rules☆60Updated 2 years ago
- Scoring Engine for CTF competitions☆48Updated 2 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 7 years ago
- Credential Phish Analysis and Automation☆97Updated 7 years ago
- A python script to query the MITRE ATT&CK API for tactics, techniques, mitigations, & detection methods for specific threat groups.☆66Updated 6 years ago
- Mass static malware analysis tool☆95Updated 3 years ago
- Hunting IOCs all day every day...☆86Updated 2 years ago
- This repository is a curated list of pro bono incident response entities.☆21Updated 2 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆55Updated 7 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Updated 4 years ago
- Clustering NMAP XML results to help make sense of large scan results.☆33Updated 2 years ago
- malicious file maker/sender to create and send malicious attachments to test your email filter/alerting☆69Updated 8 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆141Updated 2 years ago
- Slides from various talks that I've given over the years☆118Updated 2 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- The Intelligent Honey Net Project attempts to create actionable information from honeypots☆63Updated 9 years ago