danieleperera / SocAnalystArsenal
Quick SOC L1 ticket structure
☆35Updated 5 years ago
Related projects: ⓘ
- links collected from SOC Core Skills class☆84Updated 3 years ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Cybersecurity Incident Response Plan☆86Updated 3 years ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆36Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- Repository of public reference frameworks for the DFIR community.☆105Updated last year
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- ☆28Updated 3 years ago
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- Resources for SANS CTI Summit 2021 presentation☆102Updated 10 months ago
- DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆35Updated 5 years ago
- A curated list of FOSS software appliances for building a SOC☆18Updated 3 years ago
- Resources from the Security Presentation☆11Updated 10 months ago
- Repository resource for threat hunter☆157Updated 6 years ago
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆73Updated 2 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 2 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆108Updated 9 months ago
- Learning by Practising - Hack & Detect - A Practical Guide to Hacking and its Detection via network forensics☆75Updated last year
- User Feedback Space of #MitreAssistant☆37Updated last year
- Three datasets to practice Threat Hunting against.☆36Updated 8 months ago
- ☆86Updated this week
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆106Updated 4 years ago
- Cheat sheets for threat hunting, detection and other stuff.☆31Updated last year
- Reference sheet for Threat Hunting Professional Course☆24Updated 5 years ago
- 🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.☆12Updated 4 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆23Updated 2 years ago
- All my slides for any talks☆23Updated 11 months ago
- Docker Crash Course: How to containerize your favorite security tools☆27Updated last year
- Collection of scripts provided for public use☆28Updated last month
- Defensive Origins Training Schedule☆35Updated 9 months ago