SekoiaLab / FastIR_Server
The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
☆12Updated 7 years ago
Related projects: ⓘ
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆13Updated 6 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- ☆24Updated last year
- Scripts to help hunt for possible golden/silver TGT tickets☆16Updated 7 years ago
- ☆14Updated 6 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆27Updated 4 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- HoneyDB Python Module☆13Updated 7 months ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Python bindings for Yeti's API☆18Updated last year
- Crack your macros like the math pros.☆33Updated 7 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆40Updated 4 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆22Updated 7 years ago
- ☆28Updated 5 years ago
- ☆11Updated this week
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report …☆11Updated 3 years ago
- (Unofficial) Python API for https://sslbl.abuse.ch/☆11Updated 7 years ago
- Repository of Information sharing on threats and indicators☆12Updated 4 years ago
- This repository is a curated list of pro bono incident response entities.☆19Updated last year
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- ☆22Updated 3 years ago
- Detect malicious domain, Blablablablabla☆26Updated 7 years ago
- The repository for Building visualisation platforms for OSINT data using open source solutions☆30Updated 6 years ago
- ☆14Updated this week