h0rv4th / c2matrix-analyzerLinks
Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
☆12Updated 5 years ago
Alternatives and similar repositories for c2matrix-analyzer
Users that are interested in c2matrix-analyzer are comparing it to the libraries listed below
Sorting:
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- ☆15Updated 3 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 4 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Virtual Security Operations Center☆51Updated 2 years ago
- Cobalt Strike/C2 Servers☆13Updated 4 years ago
- ☆33Updated 9 months ago
- Strafer: A tool to detect potential infections in Elasticsearch instances☆27Updated 4 years ago
- Windows Security Logging☆43Updated 3 years ago
- ☆44Updated 3 months ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆75Updated 11 months ago
- ☆36Updated 3 years ago
- Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…☆38Updated last year
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆55Updated 4 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 11 months ago
- Python script which takes internal asset inventory at scale using zmap. Outputs to CSV.☆21Updated 3 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆61Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated last week
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 5 years ago
- A tool for simplifying the process of researching IOCs.☆25Updated 4 years ago
- Defcon 28 - Red Team Village - Applied Purple Teaming - Why Can't We Be Friends☆26Updated 5 years ago
- Small python script wrapper for automating hashcat commands☆38Updated 4 years ago
- RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.☆10Updated 4 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- ☆14Updated 4 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Automatically deploy preconfigured SSL ready GoPhish instances into Azure using Terraform.☆17Updated 4 years ago