mnemonic-no / provreq
Adversary Emulation Planner
☆37Updated 2 months ago
Related projects: ⓘ
- CyCAT.org API back-end server including crawlers☆30Updated last year
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆29Updated 8 months ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆43Updated 2 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆55Updated 2 years ago
- An open source platform to support analysts to organise their case and tasks☆49Updated 2 weeks ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- CSIRT Jump Bag☆26Updated 4 months ago
- A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…☆21Updated 9 months ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated last week
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Attack Tool Timing and Reporting - Structured Attack Logging Format☆21Updated last year
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆35Updated last year
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆18Updated 6 months ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 2 years ago
- A web scraper to create MISP events and reports☆14Updated last year
- A script to create and assign SOP tasks into the cases☆18Updated 4 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆30Updated 2 years ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆34Updated 2 years ago
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆15Updated 2 years ago
- List of Awesome Vertex Synapse Resources☆24Updated last month
- The Intelligent Process Lifecycle of Active Cyber Defenders☆31Updated last year
- Automatic detection engineering technical state compliance☆49Updated 2 months ago
- ☆14Updated this week
- Threat intelligence and threat detection indicators (IOC, IOA)☆51Updated 3 years ago
- Incident Response Network Tools☆22Updated 3 years ago
- Augmentation to Machine Readable CTI☆25Updated this week
- Automated detection rule analysis utility☆29Updated last year
- MITRE Shield website☆18Updated 2 years ago