robvandenbrink / CVEScan
List CVEs and details that apply to your infrastructure (pre-inventoried).
☆10Updated 3 years ago
Related projects: ⓘ
- Notebooks created to attack and secure Active Directory environments☆27Updated 4 years ago
- ☆14Updated 6 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆21Updated 4 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆16Updated 3 years ago
- ☆22Updated 3 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆32Updated 7 months ago
- Presentation materials for talks I've given.☆20Updated 4 years ago
- Scripts to help hunt for possible golden/silver TGT tickets☆16Updated 7 years ago
- Cybersecurity Incidents Mind Maps☆32Updated 2 years ago
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- Speaking materials from conferences I've given☆9Updated 2 years ago
- Threat Mitigation Strategies☆23Updated last year
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆13Updated 6 months ago
- Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA☆22Updated 5 years ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- TITO is a light framework for operationalizing threat intelligence that is platform and data agnostic.☆20Updated 4 years ago
- ☆28Updated 5 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- ☆30Updated 6 years ago
- Useful commands for infosec☆28Updated last year
- C# User Simulation☆33Updated last year
- Accompanying PowerShell Modules for DevSec Defense Presentation☆27Updated 6 years ago
- Bunch of honey related items that spoof/decoy powersploit functions.☆18Updated 4 years ago
- Analytics for Accounting logs from Network devices☆16Updated 3 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago