cmu-sei / crucible
Crucible is a modular framework for creating, deploying, and managing virtual environments to support training, education, and exercises.
☆29Updated 3 months ago
Related projects: ⓘ
- The Infosec Community Definitive Guide to Jupyter Notebooks☆108Updated 3 years ago
- Cisco Orbital - Osquery queries by Talos☆122Updated 3 weeks ago
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- A port of BHIS's Backdoors & Breaches for playingcards.io☆59Updated last year
- A community event for security researchers to share their favorite notebooks☆105Updated 7 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆76Updated 8 months ago
- Collection of Jupyter Notebooks by @fr0gger_☆139Updated 2 weeks ago
- Tools for simulating threats☆170Updated 10 months ago
- Cybersecurity Incident Response Plan☆86Updated 3 years ago
- CrowdStrike's Open Source Policy & Contribution Guide☆35Updated last year
- SIEGMA - Transform Sigma rules into SIEM consumables☆139Updated last year
- An opensource sigma conversion tool built using pysigma☆90Updated 2 weeks ago
- Implementing the CIS Critical Controls (almost) for Free☆85Updated 2 years ago
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆40Updated this week
- Detection of obfuscated Powershell commands☆53Updated last year
- Configuration Hardening Assessment PowerShell Script (CHAPS)☆170Updated 4 months ago
- ☆79Updated 2 months ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆241Updated last year
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆123Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆93Updated 6 months ago
- Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆36Updated 4 years ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆184Updated 4 years ago
- OSSEM Common Data Model☆54Updated 2 years ago
- ☆51Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- A virtual appliance for building cyber labs, challenges and competitions☆19Updated 2 months ago