glallen01 / csirt-essential-readingLinks
Reading List for CSIRT Team Members
☆17Updated 5 years ago
Alternatives and similar repositories for csirt-essential-reading
Users that are interested in csirt-essential-reading are comparing it to the libraries listed below
Sorting:
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Network Forensics Workshop Files☆17Updated 10 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- ☆18Updated 7 years ago
- mindmap created for tools can be used during analysis/investigation☆27Updated 8 years ago
- Small scripts for doing repeatable tasks☆25Updated 3 years ago
- Python bindings for Yeti's API☆18Updated last year
- This repository is a curated list of pro bono incident response entities.☆20Updated last year
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 8 years ago
- Maltego Transform to put entities into MISP events☆27Updated 3 years ago
- Passive recon / OSINT automation script☆39Updated 6 years ago
- ☆9Updated 7 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- A Maltego transform and machine to identify possible phishing vectors using permutated domains☆15Updated 9 years ago
- Some IR notes☆73Updated 8 years ago
- Incident Response Scripts☆30Updated 5 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- SANS Hunting on the Cheap☆35Updated 9 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- ☆14Updated 7 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 9 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 4 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- Set of PoC for exploits for QRadar SIEM☆15Updated 7 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆21Updated 6 years ago
- Python module to use the MISP Taxonomies☆29Updated this week