WithSecureLabs / FLAIR
F-Secure Lightweight Acqusition for Incident Response (FLAIR)
☆16Updated 3 years ago
Alternatives and similar repositories for FLAIR:
Users that are interested in FLAIR are comparing it to the libraries listed below
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago
- Kibana app for RedELK☆16Updated 2 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 3 months ago
- ☆12Updated 3 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 4 months ago
- Pure Honeypots with an automated bash script☆20Updated 3 years ago
- ☆15Updated 3 years ago
- Speaking materials from conferences I've given☆9Updated 2 years ago
- A location where I save and share notes about security topics.☆11Updated 4 years ago
- Parser for Windows PowerShell script block logs☆13Updated 2 months ago
- ☆11Updated 4 years ago
- Threat Mitigation Strategies☆25Updated last year
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- Carving tool based in Radare2 & Yara☆15Updated 6 years ago
- Training scenarios for cyber ranges☆11Updated 4 years ago
- Automated Static Analysis Framework☆9Updated 3 years ago
- PowerShell Post-exploitation agent based on Mitre Att&ck framework☆12Updated 2 years ago
- Standardizing Security Titles☆13Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆23Updated this week
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆23Updated 4 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 9 months ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 4 years ago
- ☆14Updated last month
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- A PowerShell script to prevent Sysmon from writing its events☆15Updated 4 years ago
- A Canary which fires when uninstalled☆34Updated 4 years ago