referefref / aiocriocLinks
An LLM and OCR based Indicator of Compromise Extraction Tool
☆33Updated 6 months ago
Alternatives and similar repositories for aiocrioc
Users that are interested in aiocrioc are comparing it to the libraries listed below
Sorting:
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated 8 months ago
- Can you pay the ransom in your country?☆14Updated last year
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆27Updated this week
- ☆17Updated this week
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated 8 months ago
- pocket guide for core detection engineering concepts☆28Updated 2 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆29Updated last year
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆49Updated last year
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 7 months ago
- Data from Dark Web Marketplace scraping - Be careful☆39Updated 7 months ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…☆51Updated 4 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Updated 10 months ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆103Updated last year
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆51Updated this week
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 2 years ago
- Repository that contains a set of purposefully erroneous Yara rules.☆51Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆30Updated last month
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- Repo for experimenting and testing MCP server builds for CTI-related research.☆26Updated last month
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆27Updated last year
- Offensive Research Guide to Help Defense Improve Detection☆31Updated 2 years ago
- Sniffing out well-known threat groups☆28Updated 10 months ago
- Turn any blog into structured threat intelligence.☆32Updated this week
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆97Updated last year
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 3 months ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆61Updated 11 months ago