eddiechu / Terminal-SIEMLinks
Super light, super fast, unlimited search idea
☆25Updated 5 months ago
Alternatives and similar repositories for Terminal-SIEM
Users that are interested in Terminal-SIEM are comparing it to the libraries listed below
Sorting:
- A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.☆435Updated 3 months ago
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆236Updated 2 weeks ago
- Mapping of open-source detection rules and atomic tests.☆193Updated last year
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆60Updated 7 months ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆141Updated 2 months ago
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- An index of publicly available and open-source threat detection rulesets.☆131Updated 9 months ago
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆156Updated last month
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Updated 6 months ago
- This tool was created to address a common blind spot in corporate security: chat platforms. During penetration tests and red team engage…☆50Updated last month
- MCP to help Defenders Detection Engineer Harder and Smarter☆199Updated this week
- Cyber threat intelligence tool suite.☆42Updated 9 months ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆110Updated last year
- Finding ClickFix and FakeCAPTCHA like it's 1999☆120Updated this week
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆108Updated 9 months ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆68Updated 5 months ago
- MISP to Sentinel integration☆79Updated last month
- 🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Go…☆82Updated 5 months ago
- A tool for mapping cyber crime☆236Updated last week
- LotL RMM☆286Updated last week
- Repo to hold wazuh manager mcp server☆73Updated 4 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆185Updated 11 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆102Updated 5 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆275Updated last month
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆194Updated 2 months ago
- ☆120Updated 8 months ago
- This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…☆18Updated 2 years ago
- Security Scripts and Sources for daily usage.☆71Updated last week
- Parses USB connection artifacts from offline Registry hives☆106Updated 7 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆32Updated last year