cylance / CyBot

Related projects ⓘ

Alternatives and complementary repositories for CyBot

• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆380Updated 5 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• keithjjones / hostintel
  A modular Python application to collect intelligence for malicious hosts.
  ☆262Updated 3 years ago
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆251Updated last year
• THIBER-ORG / userline
  Query and report user logons relations from MS Windows Security Events
  ☆240Updated 6 years ago
• ciscocsirt / GOSINT
  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
  ☆537Updated last year
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆423Updated 10 months ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 5 years ago
• mitre / brawl-public-game-001
  Data from a BRAWL Automated Adversary Emulation Exercise
  ☆202Updated 4 years ago
• mnemonic-no / grafeo
  Open platform for modelling, collection and exchange of knowledge
  ☆157Updated last week
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆285Updated 7 years ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆463Updated 5 years ago
• praetorian-inc / purple-team-attack-automation
  Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
  ☆718Updated 4 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆237Updated 3 years ago
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆393Updated 2 years ago
• phage-nz / ph0neutria
  ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…
  ☆300Updated 4 years ago
• MISP / misp-dashboard
  A live dashboard for a real-time overview of threat intelligence from MISP instances
  ☆194Updated last year
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆148Updated 6 months ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆271Updated 6 months ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆255Updated 5 years ago
• 504ensicsLabs / DAMM
  Differential Analysis of Malware in Memory
  ☆209Updated 7 years ago
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 7 years ago
• randomuserid / Adama
  Searches For Threat Hunting and Security Analytics
  ☆239Updated 3 years ago
• diogo-fernan / malsub
  A Python RESTful API framework for online malware analysis and threat intelligence services.
  ☆368Updated 6 months ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆334Updated 2 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 2 months ago
• egaus / MaliciousMacroBot
  ☆150Updated 5 years ago
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆491Updated 2 years ago
• DavidJBianco / Clearcut
  Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review
  ☆196Updated 8 years ago