Shuffle / Shuffle-docs
Documentation used for Shuffle
☆18Updated this week
Related projects ⓘ
Alternatives and complementary repositories for Shuffle-docs
- Workflows for Shuffle☆20Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆16Updated 4 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Recon Hunt Queries☆75Updated 3 years ago
- ☆34Updated 3 years ago
- incident response scripts☆18Updated 5 years ago
- A script to create and assign SOP tasks into the cases☆18Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP☆30Updated 7 months ago
- Incident Response Report Using GitHub-Sphinx☆19Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- Docker Container to deploy Mitre Caldera Automated Adversary Emulation System☆25Updated 4 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 4 years ago
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆12Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Triage automation for suspect URLs☆12Updated 5 years ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆44Updated 4 years ago
- ☆14Updated 4 years ago