SekoiaLab / Fastir_Collector_Linux

Related projects ⓘ

Alternatives and complementary repositories for Fastir_Collector_Linux

• SekoiaLab / Fastir_Collector
  ☆505Updated 3 years ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 5 years ago
• keithjjones / hostintel
  A modular Python application to collect intelligence for malicious hosts.
  ☆262Updated 3 years ago
• mitre / brawl-public-game-001
  Data from a BRAWL Automated Adversary Emulation Exercise
  ☆202Updated 4 years ago
• ChrisRimondi / VulntoES
  Vulnerability Data in ES
  ☆145Updated 7 years ago
• CERT-W / certitude
  The Seeker of IOC
  ☆129Updated 4 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• travisfoley / dfirtriage
  Digital forensic acquisition tool for Windows based incident response.
  ☆334Updated 6 months ago
• P4T12ICK / ypsilon
  Automated Use Case Testing
  ☆165Updated 6 years ago
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆256Updated 4 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆285Updated 7 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆271Updated 6 months ago
• endgameinc / eqllib
  ☆158Updated 3 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆140Updated last year
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆251Updated last year
• TKCERT / mail-security-tester
  A testing framework for mail security and filtering solutions.
  ☆244Updated last year
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆142Updated 7 years ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆148Updated 5 months ago
• mandiant / ioc_writer
  ☆200Updated last year
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆184Updated last year
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 3 years ago
• mandiant / ShimCacheParser
  ☆273Updated last year
• cyberark / ketshash
  A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.
  ☆168Updated last year
• pan-unit42 / playbook_viewer
  ☆168Updated 4 months ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆175Updated 3 years ago
• passivetotal / python_api
  Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
  ☆85Updated last year
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 6 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 2 months ago
• Cyb3rPandaH / Tableau-ATTCK
  Understanding ATT&CK Matrix for Enterprise
  ☆79Updated 6 years ago