nccgroup / ImpossibleTravelLogAnalysis
Basic log analysis tool to detect impossible travel via IP address geographic information
☆19Updated 5 years ago
Related projects: ⓘ
- Python bindings for Yeti's API☆18Updated last year
- The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided☆33Updated 3 years ago
- ☆11Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 4 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Useful commands for infosec☆28Updated last year
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- This module installs and configures MISP (Malware Information Sharing Platform)☆13Updated this week
- Small scripts and POCs related to digital forensics☆16Updated last year
- Setting up a training environment for MISP☆11Updated last year
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated last year
- ☆14Updated 6 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆32Updated 7 months ago
- Collect hashes password hashes for cracking☆30Updated 10 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- PowerShell Memory Pulling script☆19Updated 9 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆27Updated 4 years ago
- ☆12Updated 4 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated last year
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- ☆17Updated this week
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Updated 4 years ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 4 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 2 years ago
- ☆15Updated this week
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Following repository contains source codes used in my two Books.☆10Updated 8 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago