stanfrbd / searchcve
Command line tool to get CVE useful info from any web report using the NVD database (NIST). Time saver for analysts.
☆41Updated this week
Alternatives and similar repositories for searchcve:
Users that are interested in searchcve are comparing it to the libraries listed below
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 4 months ago
- Retrieves information about a given domain from the Google Transparency Report : https://transparencyreport.google.com/https/certificates☆21Updated 3 years ago
- Valhalla API Client☆67Updated 2 years ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆81Updated last year
- Open source training materials for law-enforcement and organisations interested in DFIR.☆56Updated last month
- CLI generator for Velociraptor offline collector☆9Updated 5 months ago
- Repository resource threat intelligence for SOC☆10Updated 6 years ago
- Simple Docker Honeypot server emulating small snippets of the Docker HTTP API☆30Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Updated 4 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated 9 months ago
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆24Updated 2 years ago
- ☆28Updated last month
- ☆41Updated 10 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Updated 3 weeks ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆33Updated 3 years ago
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆38Updated 2 years ago
- unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Andro…☆32Updated last month
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Automatic detection engineering technical state compliance☆54Updated 7 months ago
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆24Updated 5 years ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆22Updated last week
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆32Updated 2 months ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 3 years ago
- Dissect triage script for Citrix NetScaler devices☆23Updated 7 months ago
- petit "playbook" qui pourrait servir de base à une réponse à incident lors d'une attaque de type ransomware☆21Updated 2 years ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆65Updated last year
- CSIRT Jump Bag☆27Updated 9 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- An open source platform to support analysts to organise their case and tasks☆66Updated last week