sbousseaden / PCAP-ATTACKLinks
PCAP Samples for Different Post Exploitation Techniques
☆365Updated 4 years ago
Alternatives and similar repositories for PCAP-ATTACK
Users that are interested in PCAP-ATTACK are comparing it to the libraries listed below
Sorting:
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆352Updated 3 years ago
- Sigma rules from Joe Security☆219Updated 9 months ago
- A collection of red team and adversary emulation resources developed and released by MITRE.☆516Updated 4 years ago
- IOC from articles, tweets for archives☆315Updated last year
- Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-Cradle…☆309Updated 3 years ago
- Elemental - An ATT&CK Threat Library☆318Updated 2 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆566Updated 8 months ago
- Tool Analysis Result Sheet☆356Updated 7 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆600Updated last year
- Repository of YARA rules made by Trellix ATR Team☆608Updated 5 months ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆352Updated 4 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆139Updated 4 years ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆411Updated last year
- Misc Threat Hunting Resources☆374Updated 2 years ago
- A Python package to interact with the Mitre ATT&CK Framework☆477Updated last year
- Indicators from Unit 42 Public Reports☆718Updated last week
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆381Updated 3 years ago
- Digital forensic acquisition tool for Windows based incident response.☆344Updated last year
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆611Updated 5 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆422Updated last year
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆588Updated 7 months ago
- ☆165Updated 4 years ago
- Threat Hunting tool about Sysmon and graphs☆334Updated 2 years ago
- ☆130Updated last year
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Suricata rules for network anomaly detection☆167Updated 4 months ago
- Code and yara rules to detect and analyze Cobalt Strike☆269Updated 4 years ago
- Signatures and IoCs from public Volexity blog posts.☆354Updated 3 months ago
- OSSEM Detection Model☆177Updated 2 years ago
- Live forensic artifacts collector☆170Updated last year