shadawck / awesome-endpoint-detection-and-response
Collection of tool you need to have in your Endpoint Detection and Response arsenal
☆71Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for awesome-endpoint-detection-and-response
- Open IOC sharing platform☆52Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- Website for ail-typo-squatting library☆53Updated 5 months ago
- Repository of tools and resources for analyzing Docker containers☆59Updated 11 months ago
- Cyber Threat Intelligence Data, Indicators, and Analysis☆73Updated last month
- A visualized overview of the Initial Access Broker (IAB) cybercrime landscape☆107Updated 3 years ago
- BlueBox Malware analysis Box and Cyber threat intelligence.☆38Updated 2 years ago
- ☆42Updated last year
- Data visualization for blue teams☆124Updated last year
- Look into EDR events from network☆23Updated 6 months ago
- yara detection rules for hunting with the threathunting-keywords project☆83Updated this week
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆80Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆86Updated 2 years ago
- ☆19Updated last year
- Enhance your malware detection with WAF + YARA (WAFARAY)☆107Updated 2 years ago
- ☆79Updated last year
- Surface Analysis System on Cloud☆19Updated 10 months ago
- PowerShell Script Analyzer☆65Updated last year
- Automation tool for Windows Deception Host Burn-In☆76Updated 4 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated last year
- URL fingerprinting made easy☆79Updated 6 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆49Updated 3 weeks ago
- ☆63Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆93Updated 3 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆65Updated this week
- Norimaci is a simple and lightweight malware analysis sandbox for macOS☆66Updated 4 years ago
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year