cado-security / DFIR_Resources_REvil_Kaseya
Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
☆183Updated 3 years ago
Related projects: ⓘ
- ☆130Updated 7 months ago
- ☆220Updated 2 years ago
- Detection Ideas & Rules repository.☆178Updated 3 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆143Updated 11 months ago
- Misc Threat Hunting Resources☆368Updated last year
- A list of my personal projects☆166Updated 2 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆259Updated 9 months ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆108Updated 9 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆136Updated 10 months ago
- MAL-CL (Malicious Command-Line)☆308Updated last year
- Leaked communication of Conti ransomware group from Jan 29, 2021 to Feb 27, 2022☆128Updated 2 years ago
- ☆167Updated this week
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆111Updated 2 years ago
- IOC from articles, tweets for archives☆310Updated 9 months ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆191Updated 3 years ago
- ☆185Updated last year
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆508Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆192Updated 2 years ago
- ☆95Updated 6 months ago
- ☆86Updated this week
- Repository of public reference frameworks for the DFIR community.☆105Updated last year
- JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.☆149Updated 3 years ago
- ☆194Updated 7 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆266Updated 3 weeks ago
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆173Updated last year
- Mindmaps for threat hunting - work in progress.☆149Updated 2 years ago
- Purple Teaming Attack & Hunt Lab - Terraform☆157Updated 2 years ago
- A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing☆266Updated 2 years ago