ckane / cyber-defense

Related projects ⓘ

Alternatives and complementary repositories for cyber-defense

• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• sans-blue-team / sec455-wiki
  ☆29Updated 6 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 8 years ago
• Neo23x0 / YARA-rules
  Some YARA rules i will add from time to time
  ☆12Updated 5 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago
• clr2of8 / DeployREMnux
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Updated 4 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 6 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆27Updated 7 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆47Updated 11 months ago
• nogoodconfig / pyarascanner
  A simple many-rules to many-files YARA scanner for incident response or malware zoos.
  ☆26Updated 6 years ago
• bonifield / volatilityGrapher
  Force-Directed Graph Generator for Volatility Ouputs
  ☆26Updated 5 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated 2 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• s0lari / Decoy-sploit
  Bunch of honey related items that spoof/decoy powersploit functions.
  ☆18Updated 4 years ago
• DakotaNelson / practical-malware-analysis
  Working through Practical Malware Analysis from No Starch Press
  ☆13Updated 7 years ago
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• vector-sec / DuoPusher
  Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications
  ☆13Updated 6 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• sasqwatch / rokkaku
  A fileless Windows keylogger that exfils via DNS.
  ☆32Updated 7 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• jaylagorio / Craal
  Finding Valuable Needles in Global Source Code Haystacks with Automation
  ☆18Updated 3 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 5 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆12Updated 7 years ago
• Cyb3rWard0g / CyberWardogLab
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆53Updated 6 years ago