sroberts / responding-at-scale-with-osqueryLinks
Using osquery for Mass Incident Detection & Response
☆19Updated 9 years ago
Alternatives and similar repositories for responding-at-scale-with-osquery
Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below
Sorting:
- Cli interface to threatcrowd.org☆19Updated 8 years ago
- Maltego Transform to put entities into MISP events☆28Updated 4 years ago
- How can you track the hunting techniques you come up with?☆13Updated 7 years ago
- CRITs IOC Visualization in Maltego☆28Updated 10 years ago
- Metadata Inspection Database Alerting System☆42Updated 12 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- This repository is a curated list of pro bono incident response entities.☆20Updated 2 years ago
- Cuckoo Sandbox Local Maltego Transforms Project☆49Updated 11 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Maltego transforms for the ThreatCrowd search API☆49Updated 7 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 8 years ago
- A set of templates for documenting threat intelligence☆75Updated 12 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- Threatbutt python client and Maltego transforms☆51Updated last year
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- A Python library for being a CND Batman....☆35Updated 9 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Python bindings for Yeti's API☆18Updated last year
- A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…☆81Updated 9 years ago
- Automation for VirusTotal☆31Updated 9 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 9 months ago
- API to access the Redis database of a BGP Ranking instance.☆17Updated 7 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆20Updated 6 years ago
- A Maltego transform and machine to identify possible phishing vectors using permutated domains☆15Updated 9 years ago
- Transforms for the AlienVault OTX service☆39Updated 8 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 4 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Command-line Interface for Binar.ly☆38Updated 8 years ago