neu5ron / TMInfosecLinks
Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
☆66Updated last year
Alternatives and similar repositories for TMInfosec
Users that are interested in TMInfosec are comparing it to the libraries listed below
Sorting:
- pocket guide for core threat hunting concepts☆23Updated 5 years ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆50Updated last year
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- Sigma Detection Rule Repository☆88Updated 4 years ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Converting data from services like Censys and Shodan to a common data model☆49Updated 8 months ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆86Updated 2 years ago
- Collection of YARA signatures from individual research☆44Updated last year
- ☆35Updated 4 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆63Updated 2 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆57Updated this week
- Website crawler with YARA detection☆88Updated last year
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆59Updated 5 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 8 months ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆77Updated 2 years ago
- ☆33Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago