rapid7 / insightconnect-plugins

Related projects ⓘ

Alternatives and complementary repositories for insightconnect-plugins

• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• ThreatConnect-Inc / threatconnect-playbooks
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆69Updated 3 months ago
• sans-blue-team / sec530-wiki
  ☆53Updated 3 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆85Updated this week
• sophos / solarwinds-threathunt
  Threathunt details for the Solarwinds compromise
  ☆33Updated 3 years ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆60Updated 3 years ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆52Updated 2 years ago
• carbonblack / carbon-black-cloud-sdk-python
  VMware Carbon Black Cloud Python SDK
  ☆42Updated last week
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 4 years ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆68Updated 2 months ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆23Updated 3 years ago
• teamdfir / volatility-plugins-community
  Volatility plugins developed and maintained by the community
  ☆21Updated 2 months ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 5 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• chandunsa / IRP
  Incident Response Playbooks
  ☆14Updated 5 years ago
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆19Updated 2 years ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆38Updated 4 years ago
• bromiley / olaf
  Office365 Log Analysis Framework
  ☆81Updated 5 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 3 years ago
• refractionPOINT / python-limacharlie
  Python API for the LimaCharlie.io service.
  ☆21Updated 3 weeks ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆72Updated 6 years ago
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆67Updated last year
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 5 years ago
• WillOram / cyber-incident-management
  Notes on managing and coordinating the response to major cyber incidents
  ☆39Updated 4 years ago
• AlienVault-OTX / OTX-Apps-TAXII
  Alienvault OTX TAXII connector
  ☆54Updated 7 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆24Updated 5 years ago