mitre / mock

Related projects ⓘ

Alternatives and complementary repositories for mock

• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 3 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• mitre / response
  A CALDERA plugin for autonomous incident response
  ☆24Updated 9 months ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆25Updated 8 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 2 weeks ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 6 months ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 2 years ago
• mitre / gocat
  Simplified go-cat agent for caldera
  ☆10Updated 10 months ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆14Updated 4 years ago
• counteractive / incident-response-collector
  ☆14Updated 4 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆25Updated 6 months ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆20Updated 2 years ago
• mitre / caldera-agent
  ☆20Updated 6 years ago
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated 10 months ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 8 years ago
• robvandenbrink / CVEScan
  List CVEs and details that apply to your infrastructure (pre-inventoried).
  ☆10Updated 3 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated last month
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• imp0rtp3 / yara-rules
  Yara rules written by me, for free use.
  ☆18Updated 2 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 2 years ago
• iThreatopedia / iThreatopedia.github.io
  A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.
  ☆20Updated 2 years ago
• jaegeral / osint_to_timesketch
  Virustotal Data to Timesketch
  ☆17Updated 5 years ago