cisagov / parsnip
☆71Updated 2 months ago
Alternatives and similar repositories for parsnip:
Users that are interested in parsnip are comparing it to the libraries listed below
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 6 months ago
- Repository that contains a set of purposefully erroneous Yara rules.☆51Updated last year
- Rules shared by the community from 100 Days of YARA 2025☆32Updated 3 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆74Updated this week
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆87Updated 5 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 3 months ago
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆27Updated 9 months ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (EXT4, XFS) journals (not systemd-journald), generates…☆63Updated 3 weeks ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆26Updated this week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆62Updated this week
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated last year
- Mapping of open-source detection rules and atomic tests.☆163Updated 3 months ago
- ☆74Updated 3 weeks ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆75Updated 3 weeks ago
- ☆87Updated 2 months ago
- create a "simulated internet" cyber range environment☆16Updated 3 weeks ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆87Updated this week
- The core backend server handling API requests and task management☆38Updated 2 weeks ago
- ☆68Updated 4 months ago
- Living Off Security Tools☆45Updated 5 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆72Updated 3 weeks ago
- Anvilogic Forge☆103Updated last week
- Pythia is a versatile query format designed to facilitate the discovery of malicious infrastructure by seamlessly converting into the syn…☆32Updated 8 months ago
- God Mode Detection Rules☆134Updated 8 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆122Updated last year
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆23Updated 2 weeks ago
- A preconfigured Velociraptor triage collector☆51Updated this week
- Tools and scripts to deploy and manage OpenRelik instances☆13Updated 2 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆37Updated last month
- Examine Chrome extensions for security issues☆81Updated last month