feedb / MPSiem_addonsLinks
реп полезностей для PT MaxPatrol SIEM
☆24Updated last year
Alternatives and similar repositories for MPSiem_addons
Users that are interested in MPSiem_addons are comparing it to the libraries listed below
Sorting:
- Enterprise Response Model & Common Knowledge☆37Updated last year
- Открытый репозиторий с правилами на языке eXtraction and Processing (XP)☆21Updated last month
- Chrome extension for SOC automations☆35Updated 3 weeks ago
- MP SIEM SDK☆25Updated 4 months ago
- ☆67Updated 4 years ago
- A free data collection and YARA scanning tool for cybersecurity incident investigation, compromise assessment and threat hunting☆15Updated 7 months ago
- Extensible framework for analyzing publicly available information about vulnerabilities☆116Updated last month
- ☆121Updated last year
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- A repository to share publicly available Velociraptor detection content☆173Updated this week
- Windows Malware Investigation Scripts & Docs☆83Updated 7 months ago
- A repository of my own Sigma detection rules.☆160Updated 9 months ago
- ☆66Updated 2 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated 2 months ago
- ☆160Updated last year
- Tools for simulating threats☆186Updated last year
- CarbonBlack EDR detection rules and response actions☆71Updated 9 months ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆55Updated 6 years ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆39Updated this week
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆117Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆321Updated last month
- Active C&C Detector☆154Updated last year
- ThreatSeeker: Threat Hunting via Windows Event Logs☆121Updated 2 years ago
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆101Updated 2 months ago
- Some important DFIR Resources☆83Updated 2 years ago
- A collection of CVEs weaponized by ransomware operators☆116Updated 2 weeks ago
- Sample evtx files to use for testing hayabusa detection rules☆57Updated 7 months ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆160Updated 7 months ago