sfakiana / SANS-CTI-Summit-2020Links
Resources for SANS CTI Summit 2020 presentation
☆20Updated 5 years ago
Alternatives and similar repositories for SANS-CTI-Summit-2020
Users that are interested in SANS-CTI-Summit-2020 are comparing it to the libraries listed below
Sorting:
- The FASTEST way to consume threat intel.☆68Updated 2 years ago
- ☆173Updated last year
- Dump of organized knowledge on DFIR☆135Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆246Updated 4 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated last year
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- Resources for SANS CTI Summit 2021 presentation☆103Updated last year
- A Splunk app to use MISP in background☆111Updated last week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆60Updated 2 months ago
- User guide of MISP☆272Updated 7 months ago
- Sigma Detection Rule Repository☆89Updated 5 years ago
- ☆32Updated last year
- Collection of useful, up to date, Carbon Black Response Queries☆84Updated 4 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆112Updated 8 months ago
- ☆96Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Updated 4 years ago
- Repository of public reference frameworks for the DFIR community.☆116Updated 2 years ago
- Scripts to facilitate filtering with Plaso☆126Updated 5 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 2 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆34Updated 2 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆129Updated 2 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆223Updated 4 months ago
- ☆42Updated 4 years ago
- Collecting & Hunting for IOCs with gusto and style☆241Updated 4 years ago