SimoneCagol / sigma-rules-crawler
☆27Updated this week
Related projects ⓘ
Alternatives and complementary repositories for sigma-rules-crawler
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆21Updated last year
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- A MITRE Caldera plugin☆36Updated 3 months ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 2 years ago
- Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centra…☆36Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- Cyber Threats Detection Rules☆13Updated 2 months ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated 9 months ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Updated 2 years ago
- Automatic detection engineering technical state compliance☆50Updated 4 months ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…☆50Updated 2 years ago
- A home for detection content developed by the delivr.to team☆59Updated 2 months ago
- The Intelligent Process Lifecycle of Active Cyber Defenders☆31Updated last year
- A repository of Sysmon For Linux configuration modules☆15Updated 3 years ago
- Tracking APT IOCs☆25Updated 3 years ago
- Open IOC sharing platform☆52Updated last year
- YARA rule analyzer to improve rule quality and performance☆93Updated 11 months ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆29Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- Look into EDR events from network☆23Updated 6 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆68Updated 11 months ago
- Tweettioc Splunk App☆20Updated 4 years ago
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆30Updated last year
- yara detection rules for hunting with the threathunting-keywords project☆83Updated this week
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year