cisagov / kev-dataLinks
Mirror of cisa.gov/kev data files
☆49Updated last week
Alternatives and similar repositories for kev-data
Users that are interested in kev-data are comparing it to the libraries listed below
Sorting:
- HASH (HTTP Agnostic Software Honeypot)☆137Updated last year
- An index of publicly available and open-source threat detection rulesets.☆112Updated last month
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆75Updated 2 months ago
- VulnCheck's official command line tool☆133Updated last week
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆199Updated this week
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆165Updated 7 months ago
- Anvilogic Forge☆103Updated this week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆120Updated last week
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆75Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆97Updated last year
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆160Updated last week
- ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).☆112Updated 8 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆81Updated last week
- ☆141Updated 3 months ago
- ☆44Updated 2 months ago
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 7 months ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated 8 months ago
- ☆47Updated this week
- pocket guide for core detection engineering concepts☆28Updated 2 years ago
- boostsecurityio/lotp☆126Updated last month
- Mapping of open-source detection rules and atomic tests.☆165Updated 4 months ago
- ☆40Updated last week
- ☆120Updated 2 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆164Updated 3 months ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆53Updated 2 years ago
- Local CLI tool for browser extension risk analysis☆21Updated last month
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆74Updated last year
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆51Updated 6 months ago
- ☆29Updated 6 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Updated 5 months ago