nccgroup / Threat-Intelligence-AlertsLinks
Welcome to the NCC Group Threat Intelligence Alert repo, here you will find the alerts which we have raised to our customers regarding intelligence we have identified relating to emerging threats. As part of our mission to make our society more secure we wanted to make these alerts visible to all.
☆24Updated 2 years ago
Alternatives and similar repositories for Threat-Intelligence-Alerts
Users that are interested in Threat-Intelligence-Alerts are comparing it to the libraries listed below
Sorting:
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆17Updated 4 years ago
- THOR APT Scanner User Manual☆18Updated last month
- Windows Security Logging☆43Updated 3 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 10 months ago
- A few quick recipes for those that do not have much time during the day☆22Updated 11 months ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆23Updated 9 years ago
- Carving tool based in Radare2 & Yara☆16Updated 6 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Colection of different JUMPSEC advisories, guidance, and scripts for all of the latest vulnerabilities and adversaries☆13Updated 3 years ago
- Python script which takes internal asset inventory at scale using zmap. Outputs to CSV.☆21Updated 3 years ago
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆55Updated 4 years ago
- Pure Honeypots with an automated bash script☆20Updated 4 years ago
- Virtual machines that are set up with a variety of known vulnerabilities.☆15Updated 3 years ago
- ☆33Updated 8 months ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆75Updated 10 months ago
- Workflows for Shuffle☆23Updated 2 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated last month
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…☆38Updated last year
- A list of IOCs applicable to PoshC2☆24Updated 5 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 6 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 5 years ago