cloudina / hawk

Related projects: ⓘ

• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 2 years ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆37Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆15Updated 3 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆41Updated 2 years ago
• Te-k / commands-for-sec
  Useful commands for infosec
  ☆28Updated last year
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆11Updated 2 years ago
• cocaman / urlhaus
  ☆28Updated 6 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• MITRECND / d20
  Automated Static Analysis Framework
  ☆10Updated 2 years ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆21Updated last year
• gnxsecurity / gnx-threat-intelligence
  A commercial grade threat intelligence feed thats validated and updated every half hour.
  ☆19Updated last year
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆19Updated 3 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated this week
• telekom-security / misp-warning-lists
  ☆23Updated this week
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated last year
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 2 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• hashlookup / a-ray-grass
  a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…
  ☆13Updated 2 years ago
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 6 years ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆19Updated this week
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 7 years ago
• michalpurzynski / suricata-rules
  Example Suricata rules implementing some of my detection tactics
  ☆20Updated last year
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆34Updated 6 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• hjunker / ProcessBouncer
  ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…
  ☆23Updated 3 years ago