glallen01 / csirt-essential-reading

Related projects ⓘ

Alternatives and complementary repositories for csirt-essential-reading

• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆40Updated 4 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆19Updated last year
• jaegeral / awesome-cyber-civil-society-actors
  A curated lust of awesome cyber civil society actors, project etc.
  ☆10Updated 4 years ago
• brianwarehime / goldphish
  A Maltego transform and machine to identify possible phishing vectors using permutated domains
  ☆15Updated 9 years ago
• michael-yip / ThreatTracker
  ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…
  ☆66Updated 9 years ago
• grcninja / Small_Tasks
  Small scripts for doing repeatable tasks
  ☆25Updated 2 years ago
• sooshie / scrape_pdf
  Python script to pull various IOCs from PDFs
  ☆15Updated 9 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 7 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆42Updated 4 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆26Updated 3 years ago
• jusafing / pnaf
  Passive Network Audit Framework
  ☆32Updated 6 years ago
• cylance / NMAP-Cluster
  Clustering NMAP XML results to help make sense of large scan results.
  ☆33Updated last year
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆15Updated 8 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• endgameinc / SANS_THIR16
  SANS Hunting on the Cheap
  ☆35Updated 8 years ago
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 5 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 8 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• CERT-Bund / misp-warninglists-analyzer
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Updated 6 years ago
• sroberts / malwarehouse
  A warehouse for your malware
  ☆133Updated 11 years ago
• johnnykv / mnemosyne
  Normalizer for honeypot data.
  ☆45Updated 9 years ago