certsocietegenerale / Publications
☆17Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Publications
- ☆29Updated 5 years ago
- Use DNS to hunt for threats including DGAs☆14Updated 8 years ago
- automate your MISP installs☆66Updated 4 years ago
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆24Updated 2 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated last year
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated 8 months ago
- Reference sheet for Threat Hunting Professional Course☆25Updated 5 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communities☆65Updated last year
- Site for IWS book content☆18Updated 6 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆31Updated last year
- Expert Investigation Guides☆50Updated 3 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- ☆15Updated 2 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago
- Python script to batch query the Tor Relays and Bridges☆36Updated 5 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆15Updated 8 years ago
- A bunch of scripts I use to work with urlscan.io☆33Updated 5 years ago
- A simple tool to detect NBT-NS and LLMNR spoofing (and messing with them a bit)☆35Updated 5 years ago
- Automatic Sender Policy Framework Reconnaissance☆18Updated 6 years ago
- A script to create and assign SOP tasks into the cases☆18Updated 4 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated last year
- incident response scripts☆18Updated 5 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 4 years ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 7 years ago
- Docker Container to deploy Mitre Caldera Automated Adversary Emulation System☆24Updated 4 years ago
- Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs☆90Updated 3 years ago