SekoiaLab / Fastir_Collector_LinuxLinks
☆175Updated 4 years ago
Alternatives and similar repositories for Fastir_Collector_Linux
Users that are interested in Fastir_Collector_Linux are comparing it to the libraries listed below
Sorting:
- ☆506Updated 4 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Automated Tactics Techniques & Procedures☆255Updated 2 years ago
- The Seeker of IOC☆129Updated 4 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆369Updated 6 years ago
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago
- A modular Python application to collect intelligence for malicious hosts.☆268Updated 4 years ago
- Test Blue Team detections without running any attack.☆272Updated last year
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 3 months ago
- Digital forensic acquisition tool for Windows based incident response.☆341Updated last year
- Searches For Threat Hunting and Security Analytics☆241Updated 2 months ago
- Web App for Volatility framework☆380Updated 6 months ago
- Differential Analysis of Malware in Memory☆211Updated 8 years ago
- Vulnerability Data in ES☆146Updated 7 years ago
- ☆203Updated 2 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆545Updated 2 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated last year
- Passive DNS collection using Zeek☆182Updated 2 years ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆117Updated 4 years ago
- Automated Use Case Testing☆167Updated 7 years ago
- ☆276Updated 2 years ago
- Query and report user logons relations from MS Windows Security Events☆243Updated 6 years ago
- How to Zeek Sysmon Logs!☆101Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 6 years ago
- Log Entry to Sigma Rule Converter☆108Updated 3 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆151Updated last year
- ☆350Updated 4 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago