UraSecTeam / mordor
Re-play Adversarial Techniques
☆26Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for mordor
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated this week
- ☆1Updated last month
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆65Updated 8 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆35Updated 11 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- A repository of my own Sigma detection rules.☆156Updated 2 months ago
- Detection of obfuscated Powershell commands☆54Updated last year
- BlackBerry Threat Research & Intelligence☆93Updated last year
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆57Updated 6 months ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆29Updated 9 months ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆75Updated 6 months ago
- Full of public notes and Utilities☆87Updated last week
- Harness the power of Splunk for your investigations☆77Updated last week
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆109Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆76Updated last week
- A repository to share publicly available Velociraptor detection content☆119Updated this week
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆73Updated 3 weeks ago
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- ☆62Updated this week
- This repository contains Splunk queries to hunt some anomalies☆38Updated 2 years ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆94Updated last year
- pySigma Splunk backend☆34Updated 7 months ago
- Repository of public reference frameworks for the DFIR community.☆109Updated last year
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆123Updated 9 months ago
- A dataset containing Office 365 Unified Audit Logs for security research and detection☆48Updated 2 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆115Updated 11 months ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆66Updated last week
- An opensource sigma conversion tool built using pysigma☆101Updated last week
- SIEGMA - Transform Sigma rules into SIEM consumables☆141Updated last year