clausing / scriptsLinks
☆65Updated 4 months ago
Alternatives and similar repositories for scripts
Users that are interested in scripts are comparing it to the libraries listed below
Sorting:
- ☆35Updated 4 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- automate your MISP installs☆68Updated 4 years ago
- ☆54Updated 4 years ago
- CSIRT Jump Bag☆26Updated last year
- Intrusion Detection Honeypots Book Code☆25Updated 4 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- ☆41Updated 2 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 6 months ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- Recon Hunt Queries☆77Updated 4 years ago
- ☆32Updated last year
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Volatility plugins developed and maintained by the community☆21Updated 9 months ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- My Jupyter Notebooks☆36Updated 3 months ago
- ☆42Updated 4 years ago
- ☆49Updated 4 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆34Updated last year
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Powershell - web traffic whitenoise generator☆47Updated 5 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆82Updated last year
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆27Updated 2 weeks ago
- ☆39Updated 5 years ago