fireeye / fireeye-python
☆49Updated last year
Related projects ⓘ
Alternatives and complementary repositories for fireeye-python
- HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…☆79Updated 4 months ago
- Cloud Templates and scripts to deploy mordor environments☆127Updated 3 years ago
- A CALDERA plugin☆72Updated 3 weeks ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆111Updated last year
- Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.☆57Updated 4 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆84Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- ATT&CK Remote Threat Hunting Incident Response☆198Updated 5 years ago
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆23Updated 5 years ago
- Random hunting ordiented yara rules☆95Updated last year
- ☆77Updated 5 years ago
- Python library for threat intelligence☆80Updated 4 months ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- ☆61Updated last month
- An Inofficial Sysmon Version History (Change Log)☆32Updated 4 years ago
- Automatically create YARA rules from malicious documents.☆208Updated 2 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆102Updated last year
- Digital Forensics Artifacts Knowledge Base☆75Updated 6 months ago
- ATT&CK Evaluations website (DEPRECATED)☆59Updated 3 years ago
- A community event for security researchers to share their favorite notebooks☆106Updated 9 months ago
- ☆115Updated 9 months ago
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- Automagically extract forensic timeline from volatile memory dump☆123Updated 6 months ago
- Compilation of resources to help with Adversary Simulation automation harness☆100Updated 4 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆58Updated last year
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- Various capabilities for static malware analysis.☆75Updated 2 months ago