Security-Experts-Community / vscode-xp
Extension for eXtraction and Processing (XP) language in Visual Studio Code
☆40Updated last week
Related projects ⓘ
Alternatives and complementary repositories for vscode-xp
- Открытый репозиторий с правилами на языке eXtraction and Processing (XP)☆20Updated this week
- Chrome extension for SOC automations☆33Updated last week
- Enterprise Response Model & Common Knowledge☆36Updated 5 months ago
- реп полезностей для PT MaxPatrol SIEM☆25Updated last year
- System of Orchestration, Lifecycle control, Detection and Response☆57Updated 10 months ago
- MP SIEM SDK☆23Updated 3 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆765Updated last year
- This project is a SIEM with SIRP and Threat Intel, all in one.☆410Updated 9 months ago
- Documentation and scripts to properly enable Windows event logs.☆553Updated last year
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆554Updated this week
- ☆505Updated last month
- OpenCTI Connectors☆380Updated this week
- UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of …☆795Updated last week
- Awesome Security lists for SOC/CERT/CTI☆704Updated this week
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆395Updated this week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆322Updated last week
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,225Updated this week
- A repository of curated datasets from various attacks☆587Updated this week
- Awesome DevSecOps на русском языке☆302Updated last year
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆586Updated 4 months ago
- ReversingLabs YARA Rules☆761Updated last month
- Awesome list of keywords and artifacts for Threat Hunting sessions☆466Updated this week
- Репозиторий содержит список вопросов по наступальной безопасности.☆185Updated this week
- A resource containing all the tools each ransomware gangs uses☆728Updated this week
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆525Updated 2 months ago
- Transform Linux Audit logs for SIEM usage☆710Updated last week
- Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques☆306Updated 5 months ago
- Внедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/☆33Updated 2 years ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆594Updated 2 months ago
- SIEM Tactics, Techiques, and Procedures☆585Updated 3 weeks ago