Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
☆36Sep 28, 2015Updated 10 years ago
Alternatives and similar repositories for dns_detection
Users that are interested in dns_detection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆55Mar 2, 2022Updated 4 years ago
- Splunk Searches and Dashboards for DNS Threat Hunting☆10Mar 5, 2018Updated 8 years ago
- Cuckoo Sandbox Local Maltego Transforms Project☆49Jul 2, 2014Updated 11 years ago
- See here:☆43Dec 6, 2012Updated 13 years ago
- ☆14Jul 8, 2016Updated 9 years ago
- Script for pulling events from a MISP database and converting them to Autofocus queries.☆13Dec 28, 2015Updated 10 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Mar 7, 2017Updated 9 years ago
- InvestigationPlaybookSpec☆71Sep 26, 2017Updated 8 years ago
- Misc resources and documents on my security research☆21Jan 25, 2017Updated 9 years ago
- Home to the ActorTrackr source code☆24Jun 21, 2017Updated 8 years ago
- Ops-Trust Platform - Portal☆21Aug 5, 2016Updated 9 years ago
- ☆17Sep 3, 2015Updated 10 years ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20May 13, 2017Updated 8 years ago
- A browser extension that seamlessly integrates your yara match notifications into VirusTotal Intelligence.☆17Feb 8, 2015Updated 11 years ago
- A proof of concept demonstrating the use of Google Drive for command and control.☆87Jul 19, 2018Updated 7 years ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 5 years ago
- Scripts for accessing and transforming cyber threat intelligence☆26Nov 22, 2015Updated 10 years ago
- How can you track the hunting techniques you come up with?☆13Sep 3, 2017Updated 8 years ago
- Website letting users query information from many different security threat intelligence APIs☆26Sep 30, 2020Updated 5 years ago
- A Splunk app with saved reports derived from Sigma rules☆73Apr 24, 2018Updated 7 years ago
- Maps process creation logged by Sysmon uses Google Org Chart API☆23Mar 5, 2016Updated 10 years ago
- PowerShell No Agent Hunting☆111Apr 23, 2018Updated 7 years ago
- A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding h…☆19May 12, 2015Updated 10 years ago
- Teensy code to brute force a keylogger's unlock code☆15Sep 5, 2016Updated 9 years ago
- Munk - Visualize Splunk Architecture in Maltego☆13Sep 19, 2014Updated 11 years ago
- Security Onion Splunk App☆10May 18, 2015Updated 10 years ago
- Application to stream data from RIPE RIS Live service☆14Mar 6, 2020Updated 6 years ago
- Plugins for the Viper Framework☆14Sep 21, 2019Updated 6 years ago
- Attack Knowledge Base☆101Jul 5, 2017Updated 8 years ago
- DRAFT STIX specification documents for version 1.2☆20Oct 3, 2016Updated 9 years ago
- Threat Intelligence distribution☆31Dec 30, 2015Updated 10 years ago
- A Python command line argument to object parsing library for command line application development☆14Mar 23, 2016Updated 10 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Mar 26, 2016Updated 9 years ago
- ☆19Jul 24, 2021Updated 4 years ago
- Advanced Splunk 8, published by Packt☆11Dec 15, 2025Updated 3 months ago
- Implementing Splunk 7, Third Edition by Packt☆13Jan 30, 2023Updated 3 years ago
- Network Forensics Bro scripts & pcap samples☆63Mar 11, 2014Updated 12 years ago
- Contributed Bro Scripts☆30May 28, 2014Updated 11 years ago
- ☆13Feb 17, 2022Updated 4 years ago