goog-cmmartin / thatsiemguy
Content related to medium.com/@thatsiemguy
☆12Updated 2 months ago
Related projects: ⓘ
- Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.☆27Updated last year
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆170Updated last week
- ☆93Updated this week
- This repository contains Community and Field contributed content for LogScale☆137Updated last week
- A list of Splunk queries that I've collected and used over time.☆70Updated 3 years ago
- ☆15Updated last year
- ☆83Updated 2 years ago
- ☆40Updated last year
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆184Updated 4 years ago
- ☆24Updated 10 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆93Updated 6 months ago
- SPL cheatsheet for Splunk.☆20Updated last year
- Repository of SentinelOne Deep Visibility queries.☆116Updated 3 years ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆101Updated this week
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆96Updated 5 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆189Updated 10 months ago
- ☆9Updated 2 months ago
- ☆26Updated last week
- SentinelOne STAR Rules☆45Updated 10 months ago
- MISP to Sentinel integration☆57Updated last week
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆142Updated 7 months ago
- 2021 SANS DFIR Summit: Greppin' Logs☆21Updated 3 years ago
- Splunk Content Control Tool☆81Updated this week
- Audit Inspector is a tool for configuring and auditing Windows auditing.☆21Updated last month
- Cybersecurity Incident Response Plan☆86Updated 3 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆102Updated last month
- NIST CyberSecurity Framework management tool☆155Updated 2 years ago
- Collection of YARA-L 2.0 sample rules for the Chronicle Detection API☆297Updated this week
- Real-time Response scripts and schema☆100Updated 9 months ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆53Updated 2 months ago