certego / PcapMonkey
PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
β142Updated 6 months ago
Related projects: β
- π Threat Bus β A threat intelligence dissemination layer for open-source security tools.β255Updated last year
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsβ121Updated 3 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Frameworkβ87Updated 11 months ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auβ¦β60Updated 4 months ago
- β78Updated 4 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a matβ¦β59Updated 9 months ago
- simple YARA-based IOC scannerβ162Updated 3 weeks ago
- β43Updated 2 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures β‘οΈ MITRE ATT&CK Navigatorβ83Updated last year
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasetsβ130Updated 3 years ago
- Suricata rules for network anomaly detectionβ152Updated 3 weeks ago
- Cuckoo running in a nested hypervisorβ128Updated 4 years ago
- Mapping NSM rules to MITRE ATT&CKβ68Updated 4 years ago
- Automatically create YARA rules from malicious documents.β207Updated 2 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)β98Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and styleβ235Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverageβ110Updated last year
- β43Updated last year
- Personal compilation of APT malware from whitepaper releases, documents and own researchβ253Updated 5 years ago
- This program exports MITRE ATT&CK framework in ELK dashboardβ77Updated last year
- Log Entry to Sigma Rule Converterβ105Updated 2 years ago
- How to Zeek Sysmon Logs!β100Updated 2 years ago
- Web app that provides basic navigation and annotation of ATT&CK matricesβ57Updated 4 years ago
- β158Updated 3 years ago
- Tools to interact with APTnotes reporting/index.β94Updated 3 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaignsβ65Updated 3 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)β184Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.β77Updated 2 years ago
- PCAP Samples for Different Post Exploitation Techniquesβ339Updated 3 years ago
- Threat Alert Logic Repositoryβ88Updated 5 years ago