pan-unit42 / Wireshark-quizzesLinks
Packet captures of malicious traffic for analysis using Wireshark
☆59Updated last year
Alternatives and similar repositories for Wireshark-quizzes
Users that are interested in Wireshark-quizzes are comparing it to the libraries listed below
Sorting:
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆66Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- CarbonBlack EDR detection rules and response actions☆71Updated 9 months ago
- ☆66Updated 2 years ago
- Detection Engineering with YARA☆87Updated last year
- Sigma rules to share with the community☆122Updated 4 months ago
- yara detection rules for hunting with the threathunting-keywords project☆122Updated last month
- pcaps of traffic for traffic analysis workshop☆84Updated 3 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆85Updated 4 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated 2 weeks ago
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆16Updated 2 months ago
- Active C&C Detector☆154Updated last year
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆96Updated 7 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated 2 years ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- Creation of a laboratory for malware analysis in AWS☆100Updated 2 years ago
- ☆51Updated last week
- Slides of my public talks☆55Updated last year
- ☆68Updated 4 months ago
- ☆160Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated 2 months ago
- A specification and style guide for YARA rules☆48Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆185Updated 6 months ago
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆101Updated 2 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆31Updated 3 months ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated 7 months ago