rapid7 / insightconnect-plugins

Related projects: ⓘ

• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆60Updated 2 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆73Updated 4 years ago
• sans-blue-team / sec530-wiki
  ☆51Updated 3 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆84Updated last week
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆34Updated 5 months ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆24Updated 5 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆24Updated 4 months ago
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆35Updated this week
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆51Updated 2 years ago
• EnclaveConsulting / SANS-Slides
  ☆39Updated this week
• DefensiveOrigins / Training
  Defensive Origins Training Schedule
  ☆35Updated 9 months ago
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆19Updated 2 years ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆66Updated 3 weeks ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 4 years ago
• LogRhythm-Tools / LogRhythm.Tools
  LogRhythm PowerShell Toolkit
  ☆48Updated 11 months ago
• MarkBaggett / reassembler
  Scapy packet fragment reassembly engines
  ☆34Updated 3 years ago
• MarkBaggett / GeoLocationNotebook
  ☆40Updated 3 years ago
• ThreatConnect-Inc / threatconnect-playbooks
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆68Updated last month
• sans-blue-team / sec555-wiki
  ☆76Updated 5 years ago
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆24Updated 4 months ago
• Cyb3rWard0g / CyberWardogLab
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆53Updated 6 years ago
• teamdfir / volatility-plugins-community
  Volatility plugins developed and maintained by the community
  ☆21Updated 6 years ago
• Mostafayahia-hunter / Virustotal-python-API-Domains-IPs-and-URLs-
  ☆21Updated 3 years ago
• sophos / solarwinds-threathunt
  Threathunt details for the Solarwinds compromise
  ☆33Updated 3 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 3 years ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 3 years ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆72Updated 6 years ago
• MarkBaggett / werejugo
  Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
  ☆89Updated 3 years ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆37Updated 3 years ago