rapid7 / insightconnect-plugins
Plugin source code for the InsightConnect SOAR product, developer documentation at https://docs.rapid7.com/insightconnect/getting-started
☆66Updated this week
Related projects: ⓘ
- Submits multiple domains to VirusTotal API☆60Updated 2 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- ☆51Updated 3 years ago
- ☆84Updated last week
- Tool used to perform threat intelligence against packet data☆34Updated 5 months ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆24Updated 4 months ago
- Documentation site for Velociraptor☆35Updated this week
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago
- ☆39Updated this week
- Defensive Origins Training Schedule☆35Updated 9 months ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- LogRhythm PowerShell Toolkit☆48Updated 11 months ago
- Scapy packet fragment reassembly engines☆34Updated 3 years ago
- ☆40Updated 3 years ago
- Community driven repository of Playbooks and Apps for ThreatConnect.☆68Updated last month
- ☆76Updated 5 years ago
- Caldera plugin to deploy "humans" to emulate user behavior on systems☆24Updated 4 months ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆53Updated 6 years ago
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- ☆21Updated 3 years ago
- Threathunt details for the Solarwinds compromise☆33Updated 3 years ago
- A collection of notebooks built for defensive and offensive operations.☆76Updated 3 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs☆89Updated 3 years ago
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆37Updated 3 years ago