priamai / sigmatauLinks
An extension of the sigma standard to include security metrics.
☆15Updated 2 years ago
Alternatives and similar repositories for sigmatau
Users that are interested in sigmatau are comparing it to the libraries listed below
Sorting:
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Collection of generic YARA rules☆16Updated 11 months ago
- External telegram feeder for AIL framework☆13Updated last month
- ShellSweeping the evil.☆52Updated 11 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- ☆11Updated last year
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Can you pay the ransom in your country?☆14Updated last year
- General Content☆26Updated 10 months ago
- Living off the False Positive!☆37Updated 4 months ago
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Yara rules☆21Updated 2 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- Hundred Days of Yara Challenge☆12Updated 2 years ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 4 months ago
- This repository contains generated contextual data utilized by pyattck.☆19Updated 2 months ago
- Method of finding interesting domains using keywords + JARMs☆13Updated 2 years ago
- Baseline a Windows System against LOLBAS☆27Updated last year
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆43Updated 2 months ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago