endgameinc / SANS_THIR16View external linksLinks
SANS Hunting on the Cheap
☆36Apr 12, 2016Updated 9 years ago
Alternatives and similar repositories for SANS_THIR16
Users that are interested in SANS_THIR16 are comparing it to the libraries listed below
Sorting:
- Network Defender Toolkit☆18Jun 11, 2013Updated 12 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆16Dec 19, 2018Updated 7 years ago
- Anti-Honeypot Demo (obsolete)☆18Jul 24, 2017Updated 8 years ago
- set of entities for Maltego including common STIX objects and several flavors of kill chain.☆11May 6, 2015Updated 10 years ago
- ☆15Jan 20, 2016Updated 10 years ago
- A Python command line argument to object parsing library for command line application development☆14Mar 23, 2016Updated 9 years ago
- Public Github Pages for Cisco☆14Oct 16, 2018Updated 7 years ago
- interactive command line interfaces for Python☆13Jan 3, 2021Updated 5 years ago
- For an Internet Service Provider, AS numbers are a logical representation of the other ISP peering or communicating with his autonomous s…☆22Apr 15, 2016Updated 9 years ago
- ☆12Jun 24, 2017Updated 8 years ago
- Searches for Insider Threat Hunting☆30May 2, 2019Updated 6 years ago
- Collection of tutorials grouped by theme☆20Dec 8, 2022Updated 3 years ago
- Deploy a honeypot and a crypto currency miner together, so sweet.☆17Aug 12, 2018Updated 7 years ago
- A Python library to help with some common threat hunting data analysis operations☆143Apr 23, 2023Updated 2 years ago
- Make Windows LNK file with python (pylnk)☆66Jun 4, 2016Updated 9 years ago
- All the python and Pandas tricks I keep forgetting how to do☆18Oct 17, 2020Updated 5 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Jun 23, 2018Updated 7 years ago
- Create an incident response triage toolkit for use with Windows or Linux.☆18Jun 14, 2020Updated 5 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Feb 27, 2018Updated 7 years ago
- Generate users with "random-ish" realistic passwords or password hashes☆18Jun 24, 2016Updated 9 years ago
- Tiny Honeypot☆19Aug 9, 2013Updated 12 years ago
- Telemetry for OpenClaw - Captures tool calls, LLM usage, agent lifecycle, and message events. Outputs to JSONL file and optionally to sys…☆30Feb 5, 2026Updated last week
- Scapy hands-on at #GreHack16☆15Nov 19, 2016Updated 9 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Jun 24, 2014Updated 11 years ago
- A browser extension that seamlessly integrates your yara match notifications into VirusTotal Intelligence.☆17Feb 8, 2015Updated 11 years ago
- A Python library for being a CND Batman....☆35Oct 29, 2015Updated 10 years ago
- Manage VT Alerts☆62Oct 4, 2016Updated 9 years ago
- ☆270Aug 25, 2018Updated 7 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Jul 11, 2022Updated 3 years ago
- Pool Overflow in OpenVpn NDIS TAP Driver☆17Nov 3, 2015Updated 10 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Jul 2, 2020Updated 5 years ago
- Any other spell-checkers out there? Let's call this one the bait.☆17Sep 23, 2015Updated 10 years ago
- openioc_scan Volatility Framework plugin☆44Feb 25, 2016Updated 9 years ago
- 🦈 Tool for visualizing packet captures.☆44May 3, 2020Updated 5 years ago
- Repository for Security Workshop content☆20Sep 4, 2017Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Oct 14, 2020Updated 5 years ago
- malware-encyclopedias is a set of tools to gather malware names and descriptions☆19May 19, 2016Updated 9 years ago
- BASS - BASS Automated Signature Synthesizer☆179Sep 19, 2018Updated 7 years ago
- Scripts for making Hubot a CND Sidekick☆59Apr 14, 2016Updated 9 years ago