Integrating Sysinternals Autoruns’ logs into Security Onion
☆31Feb 20, 2024Updated 2 years ago
Alternatives and similar repositories for Pertinax
Users that are interested in Pertinax are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Mirror network traffic from one interface to another on Windows☆26Feb 26, 2020Updated 6 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- ☆11Oct 16, 2022Updated 3 years ago
- Rudimentary IP and URL threat feeds sourced from The Fakelabs Project.☆10Dec 13, 2025Updated 6 months ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 9 years ago
- A set of tools and procedures for automating NSM and NIDS deployments in AWS☆15Oct 16, 2020Updated 5 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Dec 27, 2017Updated 8 years ago
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 11 years ago
- Scripts to maintain Security Onion servers in an airgapped environment.☆10Mar 13, 2017Updated 9 years ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆17Mar 19, 2026Updated 3 months ago
- Process HTTP Pcaps With YARA☆108Jul 29, 2013Updated 12 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Run Velociraptor on Security Onion☆41Jul 27, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- My personal experience in Threat Hunting and knowledge gained so far.☆19May 27, 2017Updated 9 years ago
- ☆40Aug 27, 2021Updated 4 years ago
- Carve Windows Prefetch files from arbitrary binary data☆16Jun 11, 2017Updated 9 years ago
- Simple web app for displaying cowrie data in your browser☆12Jun 2, 2016Updated 10 years ago
- Presentation Slides and Resources☆16Jun 12, 2024Updated 2 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Jan 30, 2018Updated 8 years ago
- Modified edition of cuckoo☆18Feb 14, 2018Updated 8 years ago
- irCRpull is a PowerShell script utilized to pull several system artifacts, utilizing the free tool CrowdResponse, from a live Win7+ syste…☆14Mar 25, 2015Updated 11 years ago
- File Scanning Framework☆294Sep 15, 2021Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- PowerShell script useful for Incident Response and security/configuration baselines for Windows Vista and later☆20Feb 23, 2016Updated 10 years ago
- A RESTful API frontend for Stenographer☆54Dec 7, 2022Updated 3 years ago
- Currently not updated for WMIEvent module...☆263Feb 23, 2016Updated 10 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆122Nov 19, 2020Updated 5 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Jun 23, 2018Updated 8 years ago
- ☆29May 25, 2021Updated 5 years ago
- Extension functionality for the NightHawk operator client☆27Oct 31, 2023Updated 2 years ago
- Documentation and Issue Tracking for Stucco☆20Mar 7, 2017Updated 9 years ago
- To parse ugly Microsoft DNS Logs....☆41Jun 8, 2018Updated 8 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- An Inofficial Sysmon Version History (Change Log)☆33Oct 25, 2020Updated 5 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 4 years ago
- Malware-Analysis-Kit☆14Aug 3, 2015Updated 10 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communities☆65Sep 29, 2023Updated 2 years ago
- ☆49Aug 30, 2020Updated 5 years ago
- Steve McCanne's Sharkfest '21 Talk☆16Oct 12, 2021Updated 4 years ago
- PowerShell cmdlet to push PowerShell attack modules to a remote system via PSRemoting and if required enable WinRM remotely.☆28Sep 13, 2016Updated 9 years ago