Security-Experts-Community / ERMACKLinks
Enterprise Response Model & Common Knowledge
☆36Updated last year
Alternatives and similar repositories for ERMACK
Users that are interested in ERMACK are comparing it to the libraries listed below
Sorting:
- реп полезностей для PT MaxPatrol SIEM☆24Updated last year
- Chrome extension for SOC automations☆34Updated last month
- Открытый репозиторий с правилами на языке eXtraction and Processing (XP)☆21Updated 3 weeks ago
- MP SIEM SDK☆25Updated 4 months ago
- A free data collection and YARA scanning tool for cybersecurity incident investigation, compromise assessment and threat hunting☆15Updated 6 months ago
- ☆66Updated 4 years ago
- System of Orchestration, Lifecycle control, Detection and Response☆60Updated last year
- A repository with data about APTs☆12Updated 2 years ago
- Extensible framework for analyzing publicly available information about vulnerabilities☆115Updated 3 weeks ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …☆34Updated 9 months ago
- Sample evtx files to use for testing hayabusa detection rules☆57Updated 7 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- Harness the power of Splunk for your investigations☆107Updated 3 weeks ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆133Updated last year
- Blue Team detection lab created with Terraform and Ansible in Azure.☆158Updated 6 months ago
- LOKI2 - Simple IOC and YARA Scanner☆93Updated 10 months ago
- Rules generated from our investigations.☆195Updated this week
- Rapidly Search and Hunt through Linux Forensics Artifacts☆192Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆147Updated 2 years ago
- Forensic Artifact Collection Tool Matrix☆85Updated 6 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆180Updated this week
- Convert Sigma rules to Wazuh rules☆65Updated last year
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆90Updated last week
- CSI SIEM☆110Updated 2 years ago
- ☆66Updated 2 years ago
- Anything Sysmon related from the MSTIC R&D team☆153Updated 11 months ago
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆154Updated last year
- CarbonBlack EDR detection rules and response actions☆71Updated 8 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago