glallen01 / csirt-essential-reading
Reading List for CSIRT Team Members
☆17Updated 5 years ago
Alternatives and similar repositories for csirt-essential-reading:
Users that are interested in csirt-essential-reading are comparing it to the libraries listed below
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- Network Forensics Workshop Files☆17Updated 10 years ago
- Deploy MISP Project software with Vagrant.☆43Updated 4 years ago
- ☆18Updated 6 years ago
- Maltego Transform to put entities into MISP events☆27Updated 3 years ago
- mindmap created for tools can be used during analysis/investigation☆27Updated 8 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆21Updated 6 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 4 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 6 months ago
- Small scripts for doing repeatable tasks☆25Updated 2 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆68Updated 10 years ago
- A Maltego transform and machine to identify possible phishing vectors using permutated domains☆15Updated 9 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 8 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- Set of PoC for exploits for QRadar SIEM☆15Updated 7 years ago
- Scoring Engine for CTF competitions☆46Updated 2 years ago
- Modern Honey Net set-up and configure scripts to automate multiple installs.☆8Updated 7 years ago
- This repository is a curated list of pro bono incident response entities.☆20Updated last year
- Python bindings for Yeti's API☆18Updated last year
- API Tools☆27Updated 9 years ago
- ☆22Updated 7 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- A set of Bash scripts that allows you to repeatably collect and compare baseline audit data from Linux and Windows systems☆20Updated 11 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago