SecurityNik / pktIntel
Tool used to perform threat intelligence against packet data
☆34Updated 5 months ago
Related projects: ⓘ
- ☆40Updated 3 years ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- My Jupyter Notebooks☆36Updated 5 months ago
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- Defensive Origins Training Schedule☆35Updated 9 months ago
- ☆28Updated 3 years ago
- ☆76Updated 5 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆23Updated 5 years ago
- Threat Hunter's Knowledge Base☆21Updated 2 years ago
- ☆34Updated 3 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆55Updated 2 years ago
- CSIRT Jump Bag☆26Updated 4 months ago
- Three datasets to practice Threat Hunting against.☆36Updated 8 months ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆30Updated last year
- ☆51Updated 3 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 2 years ago
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆23Updated 2 years ago
- Wrap any binary into a cached webserver☆53Updated 2 years ago
- Incident Response Playbooks☆14Updated 5 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆57Updated last year
- Recon Hunt Queries☆76Updated 3 years ago
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆22Updated 2 months ago
- ☆28Updated 5 years ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Hunt malware with Volatility☆46Updated 4 months ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆64Updated 6 months ago