assafmo / xioc

Related projects ⓘ

Alternatives and complementary repositories for xioc

• JYVSECTEC / PHR-model
  Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC
  ☆60Updated 2 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆142Updated 7 years ago
• mvelazc0 / Oriana
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆177Updated 3 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 8 months ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆104Updated 6 years ago
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 3 years ago
• Blevene / Crimeware-In-The-Modern-Era
  Paper and Links to Crimeware in the Modern Era
  ☆31Updated 5 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• d3vzer0 / reternal-quickstart
  Repo containing docker-compose files and setup scripts without having to clone the individual reternal components
  ☆107Updated 3 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆96Updated 5 months ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆63Updated last year
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆108Updated 6 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 2 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆75Updated 6 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆15Updated 5 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• pe3zx / mthc
  All-in-one bundle of MISP, TheHive and Cortex
  ☆169Updated 2 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆68Updated 5 years ago
• unfetter-discover / unfetter-analytic
  Main Build directory
  ☆177Updated 5 years ago
• mgreen27 / Invoke-LiveResponse
  Invoke-LiveResponse
  ☆145Updated 2 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 5 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆207Updated 2 years ago
• timfrazier1 / AdversarySimulation
  Compilation of resources to help with Adversary Simulation automation harness
  ☆100Updated 4 years ago
• pmelson / narc
  ☆54Updated 4 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago