SekoiaLab / Fastir_Collector_LinuxLinks
☆174Updated 4 years ago
Alternatives and similar repositories for Fastir_Collector_Linux
Users that are interested in Fastir_Collector_Linux are comparing it to the libraries listed below
Sorting:
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆369Updated 6 years ago
- ☆519Updated 4 years ago
- Test Blue Team detections without running any attack.☆271Updated last year
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 5 years ago
- Searches For Threat Hunting and Security Analytics☆239Updated 6 months ago
- Automated Use Case Testing☆168Updated 7 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- A modular Python application to collect intelligence for malicious hosts.☆267Updated 4 years ago
- Collecting & Hunting for IOCs with gusto and style☆241Updated 4 years ago
- ☆205Updated 2 years ago
- Query and report user logons relations from MS Windows Security Events☆244Updated 7 years ago
- The Seeker of IOC☆129Updated 5 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- Automated Tactics Techniques & Procedures☆257Updated 2 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆154Updated 3 months ago
- Vulnerability Data in ES☆145Updated 7 years ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- Python abstract API for PassiveTotal services in the form of libraries and command line utilities.☆84Updated 2 years ago
- Passive DNS collection using Zeek☆182Updated 2 years ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆119Updated 4 years ago
- Understanding ATT&CK Matrix for Enterprise☆80Updated 7 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆172Updated 7 months ago
- Detecting Lateral Movement with Machine Learning☆138Updated 7 years ago
- A testing framework for mail security and filtering solutions.☆245Updated 2 years ago
- Digital forensic acquisition tool for Windows based incident response.☆344Updated last year
- 16,432 Free Yara rules created by☆387Updated 6 years ago
- A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…☆274Updated 6 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆548Updated 2 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Updated 7 years ago