jslagrew / cowrieprocessorLinks
☆17Updated 3 weeks ago
Alternatives and similar repositories for cowrieprocessor
Users that are interested in cowrieprocessor are comparing it to the libraries listed below
Sorting:
- Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…☆241Updated 10 months ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆116Updated last year
- This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…☆95Updated 5 years ago
- This is a repository for freq.py and freq_server.py☆211Updated 5 years ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆299Updated this week
- Splunk Boss of the SOC version 2 dataset.☆403Updated 2 years ago
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆72Updated 5 years ago
- Indexes for SANS Courses and GIAC Certifications☆264Updated last year
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- DDTTX Tabletop Trainings☆28Updated 4 years ago
- A curated list of awesome infosec courses and training resources.☆204Updated 2 years ago
- A port of BHIS's Backdoors & Breaches for playingcards.io☆64Updated 2 years ago
- Web application to create indexes for GIAC certification examinations.☆146Updated 2 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆73Updated 3 weeks ago
- Incident Response Hierarchy of Needs☆465Updated 2 years ago
- This repo is meant to be a list of companies that hire security people full remote.☆101Updated last month
- Any good cybersecurity program needs the policies and plans to get it started and give it direction. This is our take on a starting point☆19Updated 2 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆287Updated last year
- Atomic Purple Team Framework and Lifecycle☆298Updated 4 years ago
- Zeek Log Cheatsheets☆297Updated 2 months ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆128Updated 3 years ago
- Tools for simulating threats☆193Updated 2 years ago
- ☆133Updated last year
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆212Updated 5 years ago
- Real-time Response scripts and schema☆119Updated last week
- Splunk Boss of the SOC version 3 dataset.☆386Updated 5 years ago
- Cyber Incident Response Team Playbook Battle Cards☆418Updated last year
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆497Updated last year
- Lateral Movement and Data Access artifacts for Velociraptor☆17Updated this week
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆211Updated this week