elastic / endpointLinks
☆37Updated 2 months ago
Alternatives and similar repositories for endpoint
Users that are interested in endpoint are comparing it to the libraries listed below
Sorting:
- OSSEM Data Dictionaries☆61Updated 5 months ago
- Anything Sysmon related from the MSTIC R&D team☆153Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- Elastic Security Labs releases☆68Updated last week
- A CALDERA plugin☆77Updated 3 weeks ago
- pySigma Splunk backend☆39Updated last month
- ☆20Updated this week
- Full of public notes and Utilities☆117Updated 4 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆79Updated last month
- ☆68Updated 4 months ago
- The Sigma command line interface based on pySigma☆158Updated 2 months ago
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆31Updated 3 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.☆58Updated 5 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 2 months ago
- Slides of my public talks☆55Updated last year
- Library of threat hunts to get any user started!☆44Updated 4 years ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆81Updated last month
- Open IOC sharing platform☆55Updated 7 months ago
- Collection of useful Canary tools☆81Updated 3 weeks ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- ☆48Updated 3 weeks ago
- Simulates a compromise in a cloud and container environment☆32Updated 6 months ago
- OSSEM Common Data Model☆55Updated 2 years ago
- A CALDERA plugin☆26Updated 11 months ago
- ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…☆20Updated 3 weeks ago
- A home for detection content developed by the delivr.to team☆69Updated 3 weeks ago
- ShellSweeping the evil.☆53Updated last year
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆88Updated last year
- Active Directory Purple Team Playbook☆108Updated 2 years ago