pan-unit42 / playbook_viewerView external linksLinks
☆176Jun 25, 2024Updated last year
Alternatives and similar repositories for playbook_viewer
Users that are interested in playbook_viewer are comparing it to the libraries listed below
Sorting:
- ☆714Oct 28, 2022Updated 3 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Indicators from Unit 42 Public Reports☆728Aug 17, 2025Updated 5 months ago
- Expert Investigation Guides☆51Mar 18, 2021Updated 4 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆370Feb 7, 2019Updated 7 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆569Dec 19, 2025Updated last month
- pcaps for Wireshark tutorial about examining Dridex infection traffic☆17Oct 8, 2020Updated 5 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆431Dec 22, 2023Updated 2 years ago
- Python CLI covering the FileScan.IO API - enabling automatic interaction with www.filescan.io or private instances☆16Jul 15, 2025Updated 6 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,475Jan 12, 2026Updated last month
- Re-play Security Events☆1,723Mar 20, 2024Updated last year
- Tools for hunting for threats.☆601Apr 30, 2025Updated 9 months ago
- ☆11Jun 12, 2023Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,263Jan 21, 2026Updated 3 weeks ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆724Dec 26, 2022Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆252Jul 19, 2021Updated 4 years ago
- Powershell Threat Hunting Module☆289Sep 21, 2016Updated 9 years ago
- Windows Events Attack Samples☆2,502Jan 24, 2023Updated 3 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,173Jul 26, 2023Updated 2 years ago
- Providing timelines based on OSINT Reports☆31Jun 21, 2023Updated 2 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,321Updated this week
- Your Everyday Threat Intelligence☆1,949Updated this week
- This repository contains zip archives of pcaps for our Wireshark tutorial about examining Emotet infection traffic. The password for any …☆25Jan 11, 2021Updated 5 years ago
- A script to assist in processing forensic RAM captures for malware triage☆26Feb 4, 2021Updated 5 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Feb 1, 2022Updated 4 years ago
- ☆129Jan 29, 2024Updated 2 years ago
- A lightweight C++/C AFF4 reader library☆14Feb 5, 2026Updated last week
- The Suspicious Email Submitter is a discontinued browser extension (Chrome, Chromium, Firefox) for the easy submission of suspicious emai…☆15Mar 6, 2023Updated 2 years ago
- APTnotes data☆1,771Dec 16, 2024Updated last year
- Automated, Collection, and Enrichment Platform☆324Nov 14, 2019Updated 6 years ago
- A knowledge base of actionable Incident Response techniques☆662May 31, 2022Updated 3 years ago
- ATT&CK Evaluations website (DEPRECATED)☆62Apr 30, 2021Updated 4 years ago
- An Elasticsearch QUEry Language☆57Jul 3, 2017Updated 8 years ago
- Mitre Att&ck Technique Emulation☆82Mar 6, 2019Updated 6 years ago
- YARA signature and IOC database for my scanners and tools☆2,864Feb 5, 2026Updated last week
- ☆24Sep 28, 2022Updated 3 years ago
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆31Nov 6, 2023Updated 2 years ago
- Registry Explorer bookmark definitions☆44Dec 19, 2024Updated last year
- An information security preparedness tool to do adversarial simulation.☆1,142Apr 1, 2019Updated 6 years ago