jgamblin / patchthisapp
Code and Website For PatchThis.app
☆24Updated this week
Related projects: ⓘ
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆56Updated this week
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆45Updated 2 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆64Updated 4 months ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆28Updated 5 months ago
- A tool that allows you to document and assess any security automation in your SOC☆40Updated 4 months ago
- Repository that contains a set of purposefully erroneous Yara rules.☆47Updated 8 months ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆27Updated 11 months ago
- pocket guide for core detection engineering concepts☆27Updated last year
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆68Updated 9 months ago
- This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework☆23Updated last year
- ☆14Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆113Updated 9 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 8 months ago
- Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…☆47Updated last week
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆93Updated 6 months ago
- ☆113Updated 11 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆37Updated 4 months ago
- A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…☆72Updated last week
- InfoSec OpenAI Examples☆19Updated 9 months ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆58Updated 4 months ago
- ☆79Updated last month
- Identify Azure blobs using a wordlist of account name and container name strings☆31Updated 3 years ago
- ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…☆15Updated 4 months ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- Anvilogic Forge☆80Updated this week
- Azure function to insert MISP data in to Azure Sentinel☆30Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆155Updated 3 weeks ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆34Updated 2 years ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆91Updated 2 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆34Updated 2 weeks ago