cisagov / crossfeedLinks
External monitoring for organization assets
☆399Updated 11 months ago
Alternatives and similar repositories for crossfeed
Users that are interested in crossfeed are comparing it to the libraries listed below
Sorting:
- Sublime rules for email attack detection, prevention, and threat hunting.☆309Updated this week
- Dorothy is a tool to test security monitoring and detection for Okta environments☆182Updated 9 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆492Updated last year
- Cyber Incident Response Team Playbook Battle Cards☆377Updated last year
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆164Updated 11 months ago
- A knowledge base of actionable Incident Response techniques☆637Updated 3 years ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆409Updated last year
- A collection of intelligence about Log4Shell and its exploitation activity.☆184Updated 3 years ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆647Updated 3 weeks ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆278Updated last year
- Zeek-Formatted Threat Intelligence Feeds☆365Updated this week
- Built-in Panther detection rules and policies☆389Updated last week
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆150Updated this week
- A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…☆575Updated 2 months ago
- Production-ready detection & response queries for osquery☆571Updated last week
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆571Updated 6 months ago
- A daily updated summary of the most frequent types of security advisories currently being reported from different sources.☆255Updated last year
- BlueHound - pinpoint the security issues that actually matter☆737Updated last year
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆385Updated last year
- Collection of useful Canary tools☆79Updated last week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆212Updated this week
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆237Updated 3 weeks ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆248Updated 6 months ago
- Atomic Purple Team Framework and Lifecycle☆294Updated 4 years ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆358Updated this week
- ☆118Updated last year
- The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).☆382Updated last month
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆230Updated this week
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆281Updated 3 years ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆253Updated 6 months ago