morphuslabs / distinctLinks
Find potential Indicators of Compromise among similar Linux servers
☆29Updated 7 years ago
Alternatives and similar repositories for distinct
Users that are interested in distinct are comparing it to the libraries listed below
Sorting:
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆21Updated 8 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- Expert Investigation Guides☆50Updated 4 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 7 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- Repository for Endpoint Security Testing☆35Updated 7 years ago
- ☆30Updated 6 years ago
- Materials from my Circle City Con talk: Fantastic OSINT (and where to find it)☆23Updated 9 years ago
- Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …☆79Updated 7 years ago
- Lutech TMS EHAT-NG☆14Updated 8 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 10 years ago
- Handy scripts developed and discussed on http://auditcasts.com☆19Updated 6 years ago
- ☆55Updated 3 years ago
- Repository for all cbapi example scripts☆16Updated 6 years ago
- Various public documents, white-papers, articles, data, analysis, and statistics about breaches and security trends.☆93Updated 6 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Vulnerability Compliance Report Tool used to parse Nessus files into html reports created by SynerComm, Inc.☆166Updated 6 years ago
- automate your MISP installs☆68Updated 5 years ago
- Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.☆52Updated 9 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- A Python package to search & delete messages from mailboxes in Office 365 using Microsoft Graph API☆25Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆25Updated 6 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 10 years ago
- PowerShell No Agent Hunting☆109Updated 7 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- ☆53Updated 7 years ago
- Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC☆61Updated 3 years ago