caliskanfurkan / awesome-security-analytics

Related projects: ⓘ

• krakow2600 / atomic-threat-coverage
  The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
  ☆23Updated 5 years ago
• shr3ddersec / ThreatHunting
  Reference sheet for Threat Hunting Professional Course
  ☆24Updated 5 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆46Updated 4 months ago
• vadim-hunter / Threat-Hunters-KB
  Threat Hunter's Knowledge Base
  ☆21Updated 2 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 3 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆52Updated 4 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆55Updated 2 years ago
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆83Updated last year
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• danieleperera / SocAnalystArsenal
  Quick SOC L1 ticket structure
  ☆35Updated 5 years ago
• fozavci / ta505plus
  TA505+ Adversary Simulation
  ☆64Updated 3 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆14Updated 5 years ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 4 years ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 4 years ago
• DefensiveOrigins / ps-whitenoiseweb
  Powershell - web traffic whitenoise generator
  ☆46Updated 4 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 5 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 8 years ago
• Neo23x0 / Cyber-Search-Shortcuts
  Browser Shortcuts for Cyber Security Related Online Services
  ☆78Updated 3 years ago
• ssnkhan / adversarial-threat-modelling
  Supporting material for my presentation "Adversarial Threat Modelling — A Practical Approach to Purple Teaming in the Enterprise"
  ☆50Updated 2 years ago
• vi-or-die / TheHive4PS
  Powershell Functions to interact with TheHive-Project
  ☆10Updated 5 years ago
• alph4w0lf / LokiX
  Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks
  ☆25Updated 4 years ago
• mosse-security / threat-hunting-samples
  Three datasets to practice Threat Hunting against.
  ☆36Updated 8 months ago
• s0lari / Hornets-Nest
  Purple Team Security
  ☆74Updated 2 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆53Updated 2 years ago
• chaoticmachinery / frac_rift
  FRAC and RIFT
  ☆17Updated 5 years ago
• ValcanK / HomeLab
  ☆19Updated 3 years ago
• TTP0 / info
  Public Landing Page
  ☆16Updated last year
• philhagen / for572-scripts
  A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis
  ☆22Updated 2 months ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆82Updated 3 years ago