atc-project / atc-data
Actionable data for Security Operations
☆18Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for atc-data
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- OSSEM Data Dictionaries☆58Updated 2 months ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆36Updated 3 years ago
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆30Updated 10 months ago
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆38Updated 3 years ago
- Automatic detection engineering technical state compliance☆50Updated 4 months ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆88Updated 2 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆40Updated 4 years ago
- ☆41Updated 7 months ago
- Full of public notes and Utilities☆82Updated 2 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆35Updated 11 months ago
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆71Updated 7 months ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆38Updated 4 years ago
- MITRE Shield website☆18Updated 3 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆16Updated 4 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆50Updated 2 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 3 years ago
- List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…☆23Updated 3 years ago
- List of sigma for a variety of threats for multiple log sources.☆11Updated 5 years ago
- ☆61Updated last month
- Cloud Templates and scripts to deploy mordor environments☆127Updated 3 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆111Updated last year
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆56Updated 3 weeks ago