egaus / wayfinder
☆9Updated 5 years ago
Related projects: ⓘ
- ☆24Updated last year
- CyCAT.org taxonomies☆14Updated 3 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆47Updated 4 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- ☆18Updated 6 years ago
- ☆33Updated 3 years ago
- Searches for Insider Threat Hunting☆30Updated 5 years ago
- Bro PCAP Processing and Tagging API☆27Updated 6 years ago
- pocket guide for core threat hunting concepts☆23Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Zeek package to generate a SMB client fingerprint☆26Updated 4 years ago
- TITO is a light framework for operationalizing threat intelligence that is platform and data agnostic.☆20Updated 4 years ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated last week
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆22Updated 7 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆36Updated last year
- Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.☆63Updated 4 months ago
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆55Updated 11 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆13Updated last year
- ☆40Updated this week
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆13Updated 4 years ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated last year
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 4 years ago
- ☆14Updated 6 years ago