nipunjaswal / networkforensics
Hands-On Network Forensics by Nipun Jaswal
☆40Updated last year
Related projects ⓘ
Alternatives and complementary repositories for networkforensics
- Dump of organized knowledge on DFIR☆132Updated 3 years ago
- A system that creates a bogus web structure to entrap and delay web scanners☆52Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆35Updated 5 years ago
- Repository of public reference frameworks for the DFIR community.☆108Updated last year
- The FASTEST way to consume threat intel.☆64Updated last year
- Learning by Practising - Hack & Detect - A Practical Guide to Hacking and its Detection via network forensics☆75Updated last year
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆107Updated 4 years ago
- Threat-Intelligence Feeds & Tools & Frameworks☆211Updated 5 months ago
- ☆46Updated 2 years ago
- Web application to create indexes for GIAC certification examinations.☆134Updated last year
- This is a repository for freq.py and freq_server.py☆199Updated 4 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆237Updated 3 years ago
- ☆115Updated 9 months ago
- Python library for threat intelligence☆79Updated 4 months ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆92Updated 2 years ago
- Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…☆208Updated 3 weeks ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆65Updated 4 years ago
- Tools for simulating threats☆174Updated last year
- SIEGMA - Transform Sigma rules into SIEM consumables☆141Updated last year
- Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆36Updated 4 years ago
- Scripts to facilitate filtering with Plaso☆125Updated 4 years ago
- ☆77Updated 5 years ago
- ☆34Updated 3 years ago
- Hunt malware with Volatility☆47Updated 6 months ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆123Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- A community event for security researchers to share their favorite notebooks☆106Updated 8 months ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆38Updated 2 years ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆24Updated 6 months ago