TheHive-Project / docsLinks
Official documentation for TheHive Project applications
☆21Updated last year
Alternatives and similar repositories for docs
Users that are interested in docs are comparing it to the libraries listed below
Sorting:
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Updated 5 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- Workflows for Shuffle☆23Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- ☆43Updated last month
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated 2 weeks ago
- Documentation used for Shuffle☆20Updated last week
- ☆34Updated 2 years ago
- OSSEM Common Data Model☆56Updated 2 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Corelight@Home script☆43Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- A repository of Sysmon For Linux configuration modules☆15Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Visual Studio Code extension for MITRE ATT&CK☆54Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 years ago
- Caldera plugin to deploy "humans" to emulate user behavior on systems☆28Updated last year
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- A collection of tips for using MISP.☆74Updated 8 months ago
- ☆67Updated last month
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Collection of Dashboards for Threat Hunting and more!☆68Updated 4 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Osquery Packs we use for customer security hardening☆12Updated 2 months ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆63Updated 2 years ago
- A tool to assess the compliance of a VMware vSphere environment against the CIS Benchmark.☆54Updated 2 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…☆37Updated last year
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year