santiago-bassett / Alienvault-Demo_scripts

Related projects ⓘ

Alternatives and complementary repositories for Alienvault-Demo_scripts

• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated 8 months ago
• sans-blue-team / sec455-wiki
  ☆29Updated 5 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆66Updated 7 years ago
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 2 years ago
• clausing / scripts
  ☆43Updated last month
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated last week
• counteractive / incident-response-collector
  ☆14Updated 4 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated 2 years ago
• Cyb3rWard0g / docker-caldera
  Docker Container to deploy Mitre Caldera Automated Adversary Emulation System
  ☆24Updated 4 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆20Updated 2 years ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆52Updated 2 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 4 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 8 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆18Updated 4 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• notx11 / urlScan2Hive
  Triage automation for suspect URLs
  ☆12Updated 5 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 6 years ago
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆30Updated 5 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• philhagen / for572-scripts
  A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis
  ☆23Updated 4 months ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• johnfranolich / Hunting-Scripts
  A collection of hunting and blue team scripts. Mostly others, some my own.
  ☆38Updated last year
• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆27Updated 7 months ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago