mandiant / flare-gsoc-2023

Related projects ⓘ

Alternatives and complementary repositories for flare-gsoc-2023

• archanchoudhury / Threat-Hunting
  This Repository gives the best and possible strategies against hunting the ransomware
  ☆24Updated 2 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆50Updated 2 years ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS
  ☆32Updated 2 weeks ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆93Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆25Updated last month
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆59Updated 2 months ago
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆23Updated 2 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 5 months ago
• cybersheepdog / Threat-Hunting-Metrics
  Threat Hunting is time consuming enough as it is. Coming up with and tracking metrics to justify your hunt team to the Execs often takes…
  ☆11Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated last year
• loneicewolf / DFIR-Resources
  Resources for DFIR. And more.
  ☆11Updated 4 months ago
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 2 months ago
• DefensiveOrigins / DO-LAB
  ☆43Updated 3 weeks ago
• M3NIX / sigmaio
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆47Updated last year
• loganflook / PowerShell-Scripts
  Repo to hold my PowerShell Scripts
  ☆17Updated 2 years ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆110Updated 7 months ago
• svch0stz / velociraptor-detections
  ☆19Updated last year
• tsale / Intrusion_data
  This repository is created to store the artifacts for any intrusions I share publicly.
  ☆24Updated last year
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆41Updated 6 months ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆29Updated last month
• sans-blue-team / DNS-Exfiltrate
  ☆23Updated last year
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆28Updated last year
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆25Updated 6 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆47Updated last week
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆20Updated 2 months ago
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆75Updated 3 years ago
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆37Updated 8 months ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆36Updated last week
• fr0gger / JupyterUniverse
  Jupyter Univere is a search engine for all infosec jupyter notebooks
  ☆19Updated 3 months ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆31Updated this week