redcanaryco / chain-reactorLinks
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
☆319Updated 4 months ago
Alternatives and similar repositories for chain-reactor
Users that are interested in chain-reactor are comparing it to the libraries listed below
Sorting:
- Cisco Orbital - Osquery queries by Talos☆134Updated last year
- Threat Hunting & Incident Investigation with Osquery☆215Updated 3 years ago
- Automatically create YARA rules from malicious documents.☆212Updated 3 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆227Updated 5 months ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆202Updated 4 years ago
- ☆175Updated last year
- A list of my personal projects☆177Updated 3 years ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆291Updated 3 months ago
- Public Repo for Atomic Test Harness☆274Updated 4 months ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆290Updated last year
- Threat Hunting tool about Sysmon and graphs☆334Updated 2 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results☆268Updated this week
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆298Updated 11 months ago
- Misc Threat Hunting Resources☆374Updated 2 years ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆256Updated 9 months ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- This is a repository for freq.py and freq_server.py☆209Updated 5 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆187Updated 3 years ago
- DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.☆570Updated 3 years ago
- Atomic Purple Team Framework and Lifecycle☆298Updated 4 years ago
- Collection of Jupyter Notebooks by @fr0gger_☆175Updated 2 months ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- A framework for orchestrating forensic collection, processing and data export☆328Updated last week
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆254Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆149Updated this week
- Collection of created MindMaps☆150Updated last year
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year