invictus-ir / aws_datasetLinks
A dataset with CloudTrail events from an attack simulation using Stratus.
☆21Updated 2 years ago
Alternatives and similar repositories for aws_dataset
Users that are interested in aws_dataset are comparing it to the libraries listed below
Sorting:
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆164Updated 4 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆46Updated 2 months ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆75Updated last year
- A preconfigured Velociraptor triage collector☆52Updated last week
- Sample evtx files to use for testing hayabusa detection rules☆58Updated 8 months ago
- ☆95Updated 2 years ago
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆203Updated 10 months ago
- A repository of my own Sigma detection rules.☆159Updated 10 months ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Updated last year
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆112Updated 7 months ago
- SentinelOne STAR Rules☆63Updated 5 months ago
- An opensource sigma conversion tool built using pysigma☆131Updated last month
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆19Updated last year
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆64Updated last year
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆135Updated last week
- Anvilogic Forge☆104Updated last week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆85Updated 5 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆114Updated 3 months ago
- A dataset containing Office 365 Unified Audit Logs for security research and detection☆52Updated 3 years ago
- A repository to share publicly available Velociraptor detection content☆184Updated last week
- Harness the power of Splunk for your investigations☆116Updated 3 weeks ago
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆35Updated 2 weeks ago
- ☆28Updated 3 months ago
- A starter pack of resources to help you get started in Detection Engineering.☆132Updated last week
- ☆41Updated 2 weeks ago
- Intel Retrieval Augmented Generation (RAG) Utilities☆90Updated last year
- Notes on responding to security breaches relating to Azure AD☆115Updated 3 years ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆39Updated last month
- Sigma Queries turned into KQL for Defender using pysigma☆10Updated last year