joeavanzato / ThreatSim
Threat Simulator for Enterprise Networks
☆12Updated 2 years ago
Related projects: ⓘ
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆35Updated last year
- A MITRE ATT&CK Lookup Tool☆41Updated 4 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆29Updated 2 months ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- Bloodhound Portable for Windows☆51Updated last year
- Penguin OS Forensic (or Flight) Recorder☆37Updated last month
- Repo for Automations and other solutions for Elastic SIEM/Security.☆17Updated 3 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 3 months ago
- DShield Sensor Log Collection with ELK☆14Updated this week
- Initial triage of Windows Event logs☆83Updated 3 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆31Updated last month
- Defence Against the Dark Arts☆34Updated 5 years ago
- Public tools, scripts or code snippets that can help when working with our products☆46Updated last week
- Automatic detection engineering technical state compliance☆49Updated 2 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated 2 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆47Updated 2 weeks ago
- Windows Security Logging☆43Updated 2 years ago
- ESXi Cyber Security Incident Response Script☆19Updated 2 weeks ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆61Updated 5 months ago
- ☆15Updated this week
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆40Updated 5 months ago
- ASR Configurator, Essentials and Atomic Testing☆32Updated 3 weeks ago
- A repository of Sysmon For Linux configuration modules☆14Updated 2 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆48Updated last year
- ☆10Updated 3 years ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆91Updated 2 months ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆14Updated 4 years ago