nsacyber / nsacyber.github.io

Related projects: ⓘ

• nsacyber / Windows-Event-Log-Messages
  Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
  ☆394Updated last year
• sans-blue-team / blue-team-wiki
  Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
  ☆437Updated 2 years ago
• nsacyber / Hardware-and-Firmware-Security-Guidance
  Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Stor…
  ☆765Updated last year
• teamdfir / sift-cli
  CLI tool to manage a SIFT Install
  ☆417Updated last year
• redhuntlabs / RedHunt-OS
  Virtual Machine for Adversary Emulation and Threat Hunting
  ☆1,234Updated 4 years ago
• nsacyber / unfetter
  Identifies defensive gaps in security posture by leveraging Mitre's ATT&CK framework. #nsacyber
  ☆163Updated 4 years ago
• mitre-attack / attack-website
  MITRE ATT&CK Website
  ☆483Updated this week
• endgameinc / RTA
  ☆1,048Updated 5 years ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆462Updated 5 years ago
• unfetter-discover / unfetter
  The main project for the Unfetter-Discover application. This is the project that will hold the configuration files, the docker-compose f…
  ☆403Updated last year
• teamdfir / sift
  SIFT
  ☆484Updated 7 months ago
• mitre / cascade-server
  CASCADE Server
  ☆262Updated last year
• infosecn1nja / awesome-mitre-attack
  A curated list of awesome resources related to Mitre ATT&CK™ Framework
  ☆580Updated 5 years ago
• A3sal0n / CyberThreatHunting
  A collection of resources for Threat Hunters
  ☆845Updated 2 months ago
• nsacyber / Mitigating-Web-Shells
  Guidance for mitigation web shells. #nsacyber
  ☆961Updated last year
• adhdproject / adhdproject.github.io
  ☆195Updated 2 years ago
• TonyPhipps / Meerkat
  A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
  ☆433Updated 3 months ago
• praetorian-inc / purple-team-attack-automation
  Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
  ☆712Updated 4 years ago
• CrowdStrike / Forensics
  Scripts and code referenced in CrowdStrike blog posts
  ☆331Updated 4 years ago
• nsacyber / WALKOFF-Apps
  WALKOFF-enabled applications. #nsacyber
  ☆141Updated 5 years ago
• cloudtracer / ThreatPinchLookup
  Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
  ☆345Updated 6 years ago
• nsacyber / Event-Forwarding-Guidance
  Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…
  ☆846Updated 3 years ago
• TryCatchHCF / DumpsterFire
  "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …
  ☆984Updated 4 years ago
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆391Updated 11 months ago
• atc-project / atomic-threat-coverage
  Actionable analytics designed to combat threats
  ☆964Updated 2 years ago
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆550Updated 2 months ago
• vitaly-kamluk / bitscout
  Remote forensics meta tool
  ☆459Updated 3 months ago
• ciscocsirt / GOSINT
  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
  ☆536Updated last year
• nshalabi / ATTACK-Tools
  Utilities for MITRE™ ATT&CK
  ☆1,008Updated 3 months ago
• OTRF / ATTACK-Python-Client
  Python Script to access ATT&CK content available in STIX via a public TAXII server
  ☆554Updated 3 months ago