SecurityRiskAdvisors / ATTiReLinks
Attack Tool Timing and Reporting - Structured Attack Logging Format
☆21Updated 2 years ago
Alternatives and similar repositories for ATTiRe
Users that are interested in ATTiRe are comparing it to the libraries listed below
Sorting:
- Threat Box Assessment Tool☆19Updated 3 years ago
- ☆42Updated last year
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆27Updated last week
- Automated detection rule analysis utility☆29Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆15Updated 4 years ago
- OSSEM Modular☆27Updated 4 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- pocket guide for core threat hunting concepts☆23Updated 5 years ago
- A CALDERA plugin for ATT&CK Evaluations Round 1☆33Updated last year
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- ☆27Updated 4 years ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆29Updated 4 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆100Updated 4 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- A home for detection content developed by the delivr.to team☆69Updated this week
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Updated 4 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Recon Hunt Queries☆77Updated 4 years ago
- My Jupyter Notebooks☆36Updated 2 months ago
- Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.☆58Updated 5 years ago
- A repository of Sysmon For Linux configuration modules☆15Updated 3 years ago
- Stupid Simple Detection Testing☆13Updated last year
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated 3 weeks ago
- Sharing Threat Hunting runbooks☆25Updated 5 years ago