sandflysecurity / sandfly-setup
Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
☆79Updated this week
Alternatives and similar repositories for sandfly-setup:
Users that are interested in sandfly-setup are comparing it to the libraries listed below
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆40Updated 11 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated last year
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆49Updated 2 years ago
- Fast IOC and YARA Scanner☆79Updated 5 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- ☆53Updated this week
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆63Updated last year
- ☆34Updated 4 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- ☆65Updated 2 months ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆56Updated last year
- ☆22Updated last week
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Passive OS detection based on SYN packets without Transmitting any Data☆46Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- automate your MISP installs☆67Updated 4 years ago
- Wrap any binary into a cached webserver☆53Updated 3 years ago
- Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …☆34Updated 8 months ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆32Updated last year
- ☆19Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 3 years ago
- ☆80Updated 2 years ago
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆55Updated 10 months ago
- A MITRE ATT&CK Lookup Tool☆45Updated 11 months ago
- Automatically exported from code.google.com/p/nipper-ng☆71Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- The FASTEST way to consume threat intel.☆68Updated last year
- CSI SIEM☆110Updated 2 years ago
- Website crawler with YARA detection☆88Updated last year