fireeye / CVE-2021-44228Links
OpenIOC rules to facilitate hunting for indicators of compromise
☆37Updated 3 years ago
Alternatives and similar repositories for CVE-2021-44228
Users that are interested in CVE-2021-44228 are comparing it to the libraries listed below
Sorting:
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆132Updated 3 years ago
- CSIRT Jump Bag☆26Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 4 years ago
- ☆119Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 10 months ago
- Browser Shortcuts for Cyber Security Related Online Services☆78Updated 4 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆45Updated 5 years ago
- ☆34Updated 2 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 3 years ago
- ☆77Updated 3 years ago
- Corelight@Home script☆44Updated 2 years ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆29Updated 3 years ago
- My Jupyter Notebooks☆36Updated 7 months ago
- Recon Hunt Queries☆78Updated 4 years ago
- ☆77Updated 2 weeks ago
- Collection of useful Canary tools☆92Updated last week
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Updated 10 months ago
- Python library for threat intelligence☆89Updated 9 months ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆85Updated last year
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆34Updated 2 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Updated 3 years ago
- Conference presentations☆59Updated this week
- Public release of Whalehoney Honeypot☆29Updated 3 years ago