TheHive-Project / DigitalShadows2THLinks
DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
☆36Updated 5 years ago
Alternatives and similar repositories for DigitalShadows2TH
Users that are interested in DigitalShadows2TH are comparing it to the libraries listed below
Sorting:
- Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆36Updated 5 years ago
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆70Updated 5 years ago
- Jupyter notebooks for threat hunting☆56Updated 2 months ago
- ☆77Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Random notes collected on the intertubes relating to DFIR☆33Updated last year
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- ☆44Updated 2 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- ☆29Updated 4 years ago
- My Jupyter Notebooks☆36Updated 2 months ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- A system that creates a bogus web structure to entrap and delay web scanners☆59Updated 4 years ago
- Cybersecurity Incident Response Plan☆91Updated 4 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆43Updated last year
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆133Updated 2 years ago
- Convert Sigma rules to LogRhythm searches☆21Updated 3 years ago
- ☆42Updated 4 years ago
- Notes on managing and coordinating the response to major cyber incidents☆40Updated 5 years ago
- Active Directory Purple Team Playbook☆108Updated 2 years ago
- Collection of scripts provided for public use☆34Updated last month
- This repo is where I store my Threat Hunting ideas/content☆87Updated 2 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Updated 3 years ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆85Updated last year
- ☆73Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆38Updated 3 years ago