andrewsmhay / BreachNotes

Related projects: ⓘ

• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆72Updated 11 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• maltelligence / maltelligence
  a Malware/Threat Analyst Desktop
  ☆89Updated 9 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆81Updated 8 years ago
• threatstream / threatstream-api
  ☆26Updated last year
• hadojae / DATA
  Credential Phish Analysis and Automation
  ☆93Updated 6 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆79Updated 11 months ago
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆77Updated 8 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 3 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 6 years ago
• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆116Updated 6 years ago
• et0x / Incident-Response
  ☆36Updated 7 years ago
• exp0se / bro-intel-generator
  Script for generating Bro intel files from pdf or html reports
  ☆74Updated 8 years ago
• ministryofpromise / tlp
  threat language parser
  ☆60Updated 9 years ago
• 0xd34db33f / gfyp
  Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…
  ☆66Updated 6 years ago
• adhdproject / buildkit
  ☆73Updated 6 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 2 years ago
• pun1sh3r / iocminion
  Just another tool to extract Indicator of compromise (ioc) from files
  ☆28Updated 8 years ago
• hardwaterhacker / CrazyParser
  Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.
  ☆51Updated 8 years ago
• daveherrald / botsv1
  Splunk Boss of the SOC v1 data set.
  ☆111Updated 6 years ago
• CrowdStrike / CrowdFMS
  CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…
  ☆128Updated 5 years ago
• SMAPPER / MimikatzHoneyToken
  This is a logon script used to detect the theft of credentials by tools such as Mimikatz
  ☆116Updated 9 years ago
• broala / bro-cheatsheets
  ☆44Updated this week
• pinktangent / Endpoint-Testing
  Repository for Endpoint Security Testing
  ☆35Updated 6 years ago
• endgameinc / SANS_THIR16
  SANS Hunting on the Cheap
  ☆35Updated 8 years ago
• hadojae / redonion
  **BETA** A simple buildscript for network security monitoring on RHEL/CentOS
  ☆31Updated 7 years ago
• ocmdev / rita
  ☆53Updated this week
• BinaryDefense / goatrider
  GoatRider is a simple tool that will dynamically pull down Artillery Threat Intelligence Feeds, TOR, AlienVaults OTX, and the Alexa top 1…
  ☆137Updated 5 years ago