rapid7 / insightconnect-pluginsLinks
Plugin source code for the InsightConnect SOAR product, developer documentation at https://docs.rapid7.com/insightconnect/getting-started
☆67Updated this week
Alternatives and similar repositories for insightconnect-plugins
Users that are interested in insightconnect-plugins are comparing it to the libraries listed below
Sorting:
- Submits multiple domains to VirusTotal API☆60Updated 3 years ago
- Expert Investigation Guides☆51Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.☆58Updated 5 years ago
- ☆54Updated 3 years ago
- Tools to automate and/or expedite response.☆115Updated 11 months ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Community driven repository of Playbooks and Apps for ThreatConnect.☆70Updated 4 months ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆54Updated 7 years ago
- MineMeld nodes for MISP☆19Updated last year
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Collection of resources related to the Center for Threat-Informed Defense☆76Updated last year
- A CALDERA plugin☆76Updated this week
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- SIEM Detection Use Case Library mapped to MITRE ATT&CK tactics and techniques☆12Updated 6 years ago
- ☆77Updated 5 years ago
- Search a filesystem for indicators of compromise (IoC).☆73Updated last week
- Notes on managing and coordinating the response to major cyber incidents☆40Updated 5 years ago
- Incident Response Network Tools☆24Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- A Splunk app to use MISP in background☆110Updated last week
- ☆35Updated 4 years ago
- ☆39Updated 5 years ago
- Office365 Log Analysis Framework☆82Updated 6 years ago
- Convert Sigma rules to LogRhythm searches☆21Updated 3 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆32Updated 2 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Sysmon Splunk App☆47Updated 6 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆42Updated 2 years ago