Splunk app to compare Endpoint Detection and Response solutions based on MITRE ATT&CK evaluations (APT3, APT29, Carbanak + FIN7, Wizard Spider + Sandworm)
☆19Sep 5, 2022Updated 3 years ago
Alternatives and similar repositories for EDRevals
Users that are interested in EDRevals are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Add-on for ingesting DMARC aggregate reports into Splunk☆15Dec 5, 2022Updated 3 years ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆28Apr 10, 2024Updated 2 years ago
- SqlServer Linked Password Dumper.☆17Apr 28, 2017Updated 9 years ago
- Automatically exported from code.google.com/p/softflowd☆15Jun 10, 2015Updated 10 years ago
- A collection of Python resources for Blue Team security work☆17Sep 23, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A quick bash script that I created in order to speed up the creation of usable kali boxes.☆12Oct 29, 2021Updated 4 years ago
- Installs And Executes Shellcode☆12Jul 26, 2015Updated 10 years ago
- Cyber Threats Detection Rules☆14Sep 16, 2025Updated 7 months ago
- Finding your secret(Credential, API Key, AWS Key, Token, etc.) in your source code, files☆17Jan 26, 2026Updated 3 months ago
- PyKafka consumer to push events to Splunk HTTP Event Collector☆17Jun 28, 2017Updated 8 years ago
- Red team oriented key finder and correlator☆21Nov 21, 2025Updated 5 months ago
- Sunburst IOCs for Splunk Ingest☆18Jan 28, 2021Updated 5 years ago
- C# DCOM Execution☆17Aug 4, 2019Updated 6 years ago
- Alternative password shadowing scheme☆10Feb 22, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆11Feb 9, 2023Updated 3 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Dec 16, 2021Updated 4 years ago
- Python Client for Nessus REST API☆13Feb 17, 2015Updated 11 years ago
- ☆15Jul 20, 2022Updated 3 years ago
- 🌌 Real-time threat detection for smart contracts☆10May 16, 2023Updated 2 years ago
- A Splunk app for obtaining information from web apps☆11Feb 9, 2021Updated 5 years ago
- Event Query Router☆12Aug 9, 2019Updated 6 years ago
- ☆26Jun 22, 2022Updated 3 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆28Sep 21, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- CCP, Kesha Williams, 11-5-2020☆20Jul 6, 2023Updated 2 years ago
- Splunking Crime using Splunk Machine Learning Toolkit☆11Dec 14, 2018Updated 7 years ago
- Model analysis tools for TensorFlow☆11Oct 27, 2019Updated 6 years ago
- UART proxy tool for inter-chip analysis.☆23Mar 14, 2025Updated last year
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆39May 3, 2021Updated 5 years ago
- A logging handler for Splunk. Lets you send information to Splunk directly from your Python code.☆23Jul 28, 2015Updated 10 years ago
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆53Jun 21, 2025Updated 10 months ago
- Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using …☆13Oct 18, 2022Updated 3 years ago
- ETHICAL-HACKING☆13Dec 20, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆32Oct 7, 2020Updated 5 years ago
- 一个常用编码加解密的懒人工具,自动识别,尝试转换所有类型,包括html实体化,base64,base32,32位md5,16位md5,hash,\x,0x等十六进制格式,url编码...☆15Feb 1, 2022Updated 4 years ago
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆45Jun 28, 2025Updated 10 months ago
- SentinelOne STAR Rules☆76Feb 11, 2025Updated last year
- Legacy password hashing framework for PHP applications needing to support or having previously supported PHP below 5.5☆15Nov 22, 2024Updated last year
- Generate representative samples from Pwned Passwords (HIBP)☆11Jan 6, 2022Updated 4 years ago
- Perform file-based malware scan on your on-prem servers with AWS☆14Oct 31, 2023Updated 2 years ago