cisagov / ioc-scannerLinks
Search a filesystem for indicators of compromise (IoC).
☆80Updated 3 weeks ago
Alternatives and similar repositories for ioc-scanner
Users that are interested in ioc-scanner are comparing it to the libraries listed below
Sorting:
- ☆72Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 years ago
- ☆55Updated 4 years ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆254Updated 2 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆125Updated 4 years ago
- A port of BHIS's Backdoors & Breaches for playingcards.io☆64Updated 2 years ago
- Corelight@Home script☆43Updated last year
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆71Updated 5 years ago
- ☆86Updated 5 months ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆227Updated 4 months ago
- CrowdStrike's Open Source Policy & Contribution Guide☆44Updated 4 months ago
- Run zeek with zeekctl in docker☆55Updated 11 months ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆90Updated last year
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆26Updated last year
- A collection of tips for using MISP.☆74Updated 8 months ago
- The FASTEST way to consume threat intel.☆68Updated 2 years ago
- Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆39Updated 5 years ago
- an awesome list of active defense resources☆124Updated 5 years ago
- ☆119Updated last year
- Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…☆53Updated 3 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 2 years ago
- Tools for simulating threats☆192Updated last year
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 2 months ago
- This is a repository for freq.py and freq_server.py☆209Updated 5 years ago
- ☆90Updated this week
- ☆78Updated last year
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆54Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆115Updated 10 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆46Updated last year