ckane / cyber-defense

Related projects: ⓘ

• Neo23x0 / YARA-rules
  Some YARA rules i will add from time to time
  ☆12Updated 5 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆47Updated 9 months ago
• sans-blue-team / sec455-wiki
  ☆28Updated 5 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 5 years ago
• nogoodconfig / pyarascanner
  A simple many-rules to many-files YARA scanner for incident response or malware zoos.
  ☆26Updated 6 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 8 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated last year
• clr2of8 / DeployREMnux
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Updated 4 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 5 years ago
• airbus-cert / mispy
  Another MISP module for Python
  ☆17Updated 4 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆12Updated 6 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆27Updated 7 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆19Updated last year
• sans-blue-team / sec487-wiki
  ☆19Updated this week
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆30Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• Cyb3rWard0g / presentations
  Presentation Slides and Video links
  ☆31Updated 2 years ago
• tsale / yara_scanner
  ☆20Updated this week
• cloud-sniper / cloud-droid
  ☆56Updated this week
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• TITO-Threat-Intel / TITO-Framework
  TITO is a light framework for operationalizing threat intelligence that is platform and data agnostic.
  ☆20Updated 4 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 6 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated this week