☆176Jun 25, 2024Updated last year
Alternatives and similar repositories for playbook_viewer
Users that are interested in playbook_viewer are comparing it to the libraries listed below
Sorting:
- ☆715Oct 28, 2022Updated 3 years ago
- Indicators from Unit 42 Public Reports☆726Aug 17, 2025Updated 7 months ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆370Feb 7, 2019Updated 7 years ago
- Python CLI covering the FileScan.IO API - enabling automatic interaction with www.filescan.io or private instances☆18Jul 15, 2025Updated 8 months ago
- ☆129Jan 29, 2024Updated 2 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,501Jan 12, 2026Updated 2 months ago
- Expert Investigation Guides☆51Mar 18, 2021Updated 5 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆568Dec 19, 2025Updated 3 months ago
- Investigate suspicious activity by visualizing Sysmon's event log☆430Dec 22, 2023Updated 2 years ago
- Re-play Security Events☆1,728Mar 20, 2024Updated 2 years ago
- pcaps for Wireshark tutorial about examining Dridex infection traffic☆17Oct 8, 2020Updated 5 years ago
- Detect Tactics, Techniques & Combat Threats☆2,268Jan 21, 2026Updated 2 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,174Jul 26, 2023Updated 2 years ago
- Powershell Threat Hunting Module☆290Sep 21, 2016Updated 9 years ago
- An Elasticsearch QUEry Language☆57Jul 3, 2017Updated 8 years ago
- Translate STIX 2 Patterning Queries☆31Oct 4, 2018Updated 7 years ago
- Windows Events Attack Samples☆2,526Jan 24, 2023Updated 3 years ago
- Feed Generator for MISP☆19Nov 2, 2022Updated 3 years ago
- A knowledge base of actionable Incident Response techniques☆662May 31, 2022Updated 3 years ago
- Providing timelines based on OSINT Reports☆31Jun 21, 2023Updated 2 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Nov 8, 2023Updated 2 years ago
- Tools for hunting for threats.☆599Apr 30, 2025Updated 10 months ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆252Jul 19, 2021Updated 4 years ago
- Automated, Collection, and Enrichment Platform☆324Nov 14, 2019Updated 6 years ago
- Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs☆730Jan 21, 2020Updated 6 years ago
- Your Everyday Threat Intelligence☆1,959Updated this week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆409Updated this week
- YARA signature and IOC database for my scanners and tools☆2,884Mar 9, 2026Updated last week
- Cloud Templates and scripts to deploy mordor environments☆129Mar 3, 2021Updated 5 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Oct 13, 2020Updated 5 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,345Mar 14, 2026Updated last week
- ☆24Sep 28, 2022Updated 3 years ago
- Tweettioc Splunk App☆20Aug 25, 2020Updated 5 years ago
- APTnotes data☆1,777Dec 16, 2024Updated last year
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Apr 10, 2020Updated 5 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- ☆60Jun 24, 2023Updated 2 years ago
- This repository contains zip archives of pcaps for our Wireshark tutorial about examining Emotet infection traffic. The password for any …☆25Jan 11, 2021Updated 5 years ago