jgamblin / CVElkLinks
Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
☆51Updated last month
Alternatives and similar repositories for CVElk
Users that are interested in CVElk are comparing it to the libraries listed below
Sorting:
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 2 years ago
- CVE.ICU code.☆42Updated this week
- An LLM and OCR based Indicator of Compromise Extraction Tool☆33Updated 5 months ago
- Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…☆54Updated 2 years ago
- Code and Website For PatchThis.app☆29Updated this week
- ☆10Updated 3 years ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆75Updated last year
- Anvilogic Forge☆103Updated this week
- Workflows for Shuffle☆23Updated 2 years ago
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆71Updated last year
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 2 months ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆33Updated last year
- Monthly CVE Stats☆42Updated last month
- Maturity Model Collaborative project☆15Updated 2 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- ☆92Updated 2 weeks ago
- A CALDERA plugin☆26Updated 10 months ago
- ☆42Updated last year
- Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …☆75Updated last year
- Repo for experimenting and testing MCP server builds for CTI-related research.☆26Updated 3 weeks ago
- Repository that contains a set of purposefully erroneous Yara rules.☆51Updated last year
- pocket guide for core detection engineering concepts☆28Updated 2 years ago
- ☆18Updated 3 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activ…☆16Updated this week
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆65Updated last year
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆62Updated this week
- Sharing Threat Hunting runbooks☆25Updated 5 years ago