redcanaryco / chain-reactorLinks
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
☆323Updated 8 months ago
Alternatives and similar repositories for chain-reactor
Users that are interested in chain-reactor are comparing it to the libraries listed below
Sorting:
- Threat Hunting & Incident Investigation with Osquery☆216Updated 3 years ago
- Cisco Orbital - Osquery queries by Talos☆135Updated last year
- A list of my personal projects☆177Updated 3 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆245Updated 8 months ago
- Threat Hunting tool about Sysmon and graphs☆335Updated 2 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆256Updated last year
- Misc Threat Hunting Resources☆375Updated 2 years ago
- Detection Ideas & Rules repository.☆178Updated 4 years ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆297Updated last year
- ☆175Updated last year
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆207Updated 5 years ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆300Updated 7 months ago
- Public Repo for Atomic Test Harness☆281Updated 8 months ago
- Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results☆275Updated last week
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆208Updated 3 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆267Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆265Updated 2 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Updated 2 years ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆299Updated 2 weeks ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 5 years ago
- Sigma rules from Joe Security☆226Updated last year
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated 2 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆189Updated 3 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Updated 3 years ago
- A community event for security researchers to share their favorite notebooks��☆109Updated last year
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆141Updated last year
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆133Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆157Updated 9 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆336Updated this week