pain0x0 / awesome-incident-response

Related projects: ⓘ

• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated 11 months ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆121Updated 4 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆75Updated last week
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆55Updated 4 months ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆69Updated last week
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆114Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆76Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆107Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆62Updated 3 years ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆137Updated last year
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆71Updated last week
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆38Updated 2 years ago
• pr0xylife / Emotet
  IOC Collection 2022
  ☆55Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• MazX0p / ThreatHound
  ☆153Updated 9 months ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆100Updated last year
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆70Updated last week
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆192Updated 2 years ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆105Updated last year
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated last year
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆120Updated 2 years ago
• G37SYS73M / win_tool_hub
  Contains All tools i Use For Red Team OPs in Windows Environment. NOTE: I am not the Creator Of these tools. These are the tools i use.
  ☆20Updated 2 years ago
• joeavanzato / crackdown
  Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
  ☆15Updated 10 months ago
• albertzsigovits / malware-notes
  Notes and IoCs of fresh malware
  ☆58Updated 2 months ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆163Updated last year
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆84Updated last year
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆85Updated last year
• pr0xylife / IcedID
  ☆34Updated 9 months ago