nasbench / MindMapsLinks
#ThreatHunting #DFIR #Malware #Detection Mind Maps
☆297Updated 3 years ago
Alternatives and similar repositories for MindMaps
Users that are interested in MindMaps are comparing it to the libraries listed below
Sorting:
- MAL-CL (Malicious Command-Line)☆312Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆202Updated 2 years ago
- Misc Threat Hunting Resources☆373Updated 2 years ago
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆525Updated 2 years ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆158Updated 6 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆615Updated 11 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆313Updated 3 weeks ago
- Repository of attack and defensive information for Business Email Compromise investigations☆252Updated 3 weeks ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆154Updated 3 years ago
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆576Updated 4 months ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- Collection of created MindMaps☆150Updated last year
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆201Updated 5 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆224Updated 4 years ago
- OSSEM Detection Model☆176Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆147Updated 2 years ago
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆154Updated last year
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆731Updated 2 months ago
- Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.☆465Updated 10 months ago
- PowerShell module for Office 365 and Azure log collection☆266Updated 2 months ago
- Threat Hunting tool about Sysmon and graphs☆333Updated 2 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆185Updated 3 years ago
- Sigma rules from Joe Security☆214Updated 6 months ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.☆562Updated 3 years ago
- Anything Sysmon related from the MSTIC R&D team☆153Updated 11 months ago
- Tool Analysis Result Sheet☆353Updated 7 years ago
- Public Repo for Atomic Test Harness☆272Updated last month
- ☆130Updated last year
- Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-Cradle…☆304Updated 3 years ago