kevinperlow / SANS-DFIR-2017Links
☆20Updated 8 years ago
Alternatives and similar repositories for SANS-DFIR-2017
Users that are interested in SANS-DFIR-2017 are comparing it to the libraries listed below
Sorting:
- The Fastest way to consume Threat Intel☆26Updated 3 years ago
- dns logger for passive dns collection☆42Updated 13 years ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 5 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Small scripts and POCs related to digital forensics☆18Updated 2 years ago
- ☆18Updated 7 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆23Updated 7 years ago
- Proof of concept implementation of a cyber threat intelligence and incident handling platform☆11Updated 2 years ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Updated 6 years ago
- Triage automation for suspect URLs☆13Updated 6 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- Python bindings for Yeti's API☆18Updated last year
- API wrapper for Maltiverse☆19Updated 11 months ago
- Tools for hunting security threats☆12Updated 5 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- A DFIR tool to extract cryptocoin addresses and other indicators of compromise from binaries.☆56Updated last year
- Mattermost - Shodan Slash command☆31Updated 8 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Small App for reading from MHN's hpfeeds broker and writing splunk logs☆10Updated 5 years ago
- Deploy MISP Project software with Vagrant.☆44Updated 5 years ago
- Different tools, koen.vanimpe@cudeso.be☆136Updated last month
- BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to captu…☆19Updated 5 years ago
- ☆13Updated 5 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- A Python DNS crawler to find identical domain names under different TLDs.☆25Updated 6 years ago
- Cowrie Honeypot Obscurer☆17Updated 4 years ago
- Virustotal Data to Timesketch☆17Updated 6 years ago