pan-unit42 / Wireshark-quizzesLinks
Packet captures of malicious traffic for analysis using Wireshark
☆59Updated 2 years ago
Alternatives and similar repositories for Wireshark-quizzes
Users that are interested in Wireshark-quizzes are comparing it to the libraries listed below
Sorting:
- yara detection rules for hunting with the threathunting-keywords project☆126Updated 2 months ago
- Initial triage of Windows Event logs☆102Updated last year
- Linux Evidence Acquisition Framework☆119Updated 10 months ago
- pcaps of traffic for traffic analysis workshop☆84Updated 3 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- IOC Collection 2022☆57Updated 2 years ago
- Open IOC sharing platform☆59Updated 8 months ago
- Welcome to the SEKOIA.IO Community repository!☆163Updated 3 weeks ago
- Cyber Threat Intelligence Data, Indicators, and Analysis☆94Updated 3 weeks ago
- Open Threat Hunting Framework☆118Updated 2 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated last month
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆96Updated 2 years ago
- ☆52Updated 3 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated 2 weeks ago
- ☆69Updated 5 months ago
- Indicators of Compromise☆212Updated last week
- Forensic Artifact Collection Tool Matrix☆88Updated 9 months ago
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆15Updated last year
- BlackBerry Threat Research & Intelligence☆98Updated last year
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year
- Sigma rules to share with the community☆121Updated 6 months ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆118Updated 2 years ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆32Updated 3 years ago
- IOCs published by Black Lotus Labs☆122Updated 2 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- pySigma Splunk backend☆41Updated 2 months ago
- Detection Engineering with YARA☆87Updated last year
- ☆197Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 8 months ago
- The Threat Actor Profile Guide for CTI Analysts☆112Updated 2 years ago