krakow2600 / atomic-threat-coverageView external linksLinks
The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
☆25Aug 12, 2019Updated 6 years ago
Alternatives and similar repositories for atomic-threat-coverage
Users that are interested in atomic-threat-coverage are comparing it to the libraries listed below
Sorting:
- A lightweight Python module to interact with the MITRE ATT&CK® Enterprise dataset. Built for speed with minimal dependencies. Read the do…☆11Nov 24, 2025Updated 2 months ago
- QRadar Export the rule set for printing☆23Oct 23, 2017Updated 8 years ago
- Pyscan - A fast malware scanner using ShellScannerPatterns☆29May 25, 2021Updated 4 years ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- Actionable analytics designed to combat threats☆1,006May 25, 2022Updated 3 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.☆135Jul 25, 2019Updated 6 years ago
- Threat Alert Logic Repository☆93Feb 7, 2019Updated 7 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Jul 31, 2020Updated 5 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆100Aug 7, 2020Updated 5 years ago
- Random source codes☆26Dec 22, 2025Updated last month
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆111Feb 6, 2020Updated 6 years ago
- The Atomic Playbook contains TTPs from the MITRE ATT&CK framework mapped to the tests in the Atomic Red Team. It serves as a single resou…☆34Jun 19, 2025Updated 7 months ago
- ☆23May 7, 2021Updated 4 years ago
- A guide to using Azure Data Explorer and KQL for DFIR☆124May 16, 2022Updated 3 years ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆355Nov 3, 2020Updated 5 years ago
- Useful Threat Hunting Stuff☆32Sep 1, 2020Updated 5 years ago
- A Splunk Technology Add-on to forward filtered ETW events.☆30Oct 14, 2020Updated 5 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Jan 20, 2022Updated 4 years ago
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆31Mar 13, 2019Updated 6 years ago
- Security checks for your researches☆34Nov 22, 2020Updated 5 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025☆60Jul 16, 2025Updated 7 months ago
- C# User Simulation☆33Oct 6, 2022Updated 3 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,475Jan 12, 2026Updated last month
- Windows GUI/Execution Engine for Atomic Red Team Atomics☆35May 20, 2020Updated 5 years ago
- An ELK environment containing interesting security datasets.☆137May 11, 2020Updated 5 years ago
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Nov 24, 2014Updated 11 years ago
- An interactive, TLS-capable HTTP intercepting proxy designed for penetration testers and software developers, including a parser for the …☆21Jul 31, 2025Updated 6 months ago
- attempt to perma root the NEC Terrain android phone☆10Jul 24, 2015Updated 10 years ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆12May 4, 2021Updated 4 years ago
- Lightweight In-App Web Application Firewall for PHP☆42Aug 26, 2020Updated 5 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆569Dec 19, 2025Updated last month
- A PowerShell incident response script for quick triage☆81Jul 18, 2022Updated 3 years ago
- Windows and macOS Hardening Interface to make security more accessible.☆37Jan 24, 2022Updated 4 years ago
- server for indexing and querying passive DNS observations☆49Jan 12, 2026Updated last month
- Powershell to read ETL file on an interval and convert it to an EVTX (so Windows Event Forwarding can 'subscribe')☆11May 16, 2017Updated 8 years ago
- Automate Recon process using Shell Scripting☆11Nov 26, 2021Updated 4 years ago