Security-Experts-Community / vscode-xp
Extension for eXtraction and Processing (XP) language in Visual Studio Code
☆40Updated last week
Related projects ⓘ
Alternatives and complementary repositories for vscode-xp
- Открытый ре позиторий с правилами на языке eXtraction and Processing (XP)☆20Updated 2 weeks ago
- Chrome extension for SOC automations☆33Updated 2 weeks ago
- Enterprise Response Model & Common Knowledge☆36Updated 5 months ago
- реп полезностей для PT MaxPatrol SIEM☆25Updated last year
- System of Orchestration, Lifecycle control, Detection and Response☆57Updated 10 months ago
- MP SIEM SDK☆23Updated 4 months ago
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆399Updated this week
- Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques☆310Updated 5 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆555Updated last week
- CyLR - Live Response Collection Tool☆647Updated 2 years ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆768Updated last year
- ☆505Updated last month
- Documentation and scripts to properly enable Windows event logs.☆556Updated last year
- This repository serves as a place for community created Targets and Modules for use with KAPE.☆657Updated last week
- Sigma rule specification☆111Updated 2 weeks ago
- MISP trainings, threat intel and information sharing training materials with source code☆389Updated this week
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆528Updated 2 months ago
- A knowledge base of actionable Incident Response techniques☆614Updated 2 years ago
- UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of …☆799Updated this week
- ReversingLabs YARA Rules☆770Updated last month
- Awesome list of keywords and artifacts for Threat Hunting sessions☆473Updated last week
- OpenCTI Connectors☆383Updated this week
- Actionable analytics designed to combat threats☆972Updated 2 years ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆544Updated 3 weeks ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆899Updated 11 months ago
- User guide of MISP☆259Updated last month
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆681Updated this week
- This project is a SIEM with SIRP and Threat Intel, all in one.☆412Updated 10 months ago
- Репозиторий содержит список вопросов по наступальной безопасности.☆186Updated last week
- A curated list of annual cyber security reports☆331Updated this week