sroberts / responding-at-scale-with-osqueryLinks
Using osquery for Mass Incident Detection & Response
☆19Updated 9 years ago
Alternatives and similar repositories for responding-at-scale-with-osquery
Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below
Sorting:
- Maltego Transform to put entities into MISP events☆28Updated 4 years ago
- Cli interface to threatcrowd.org☆19Updated 8 years ago
- Maltego transforms for the ThreatCrowd search API☆49Updated 7 years ago
- Metadata Inspection Database Alerting System☆42Updated 12 years ago
- How can you track the hunting techniques you come up with?☆13Updated 8 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 9 years ago
- CRITs IOC Visualization in Maltego☆28Updated 10 years ago
- Cuckoo Sandbox Local Maltego Transforms Project☆49Updated 11 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- A Python library for being a CND Batman....☆35Updated 9 years ago
- This repository is a curated list of pro bono incident response entities.☆21Updated 2 years ago
- Threatbutt python client and Maltego transforms☆51Updated last year
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- A set of templates for documenting threat intelligence☆75Updated 12 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆42Updated 6 years ago
- Automation for VirusTotal☆31Updated 9 years ago
- Python bindings for Yeti's API☆18Updated 2 years ago
- A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…☆83Updated 9 years ago
- A tool designed for consistent and safe capture of off network web resources.☆39Updated 8 years ago
- first commit☆20Updated last month
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated last year
- Python-based cloud node for local use☆11Updated 7 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- A homebrewed cyber threat intelligence solution☆20Updated 12 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- integrating bro into yara☆33Updated 10 years ago