swimlane / pyattck-data

Related projects: ⓘ

• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆29Updated this week
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆14Updated last year
• the2dl / SSDT
  Stupid Simple Detection Testing
  ☆11Updated 6 months ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆49Updated 3 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆49Updated 2 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆74Updated 2 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆24Updated 9 months ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆17Updated last month
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆28Updated 8 months ago
• JPCERTCC / SurfaceAnalysis-on-Cloud
  Surface Analysis System on Cloud
  ☆19Updated 9 months ago
• SecurityRiskAdvisors / ATTiRe
  Attack Tool Timing and Reporting - Structured Attack Logging Format
  ☆21Updated last year
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆24Updated 2 years ago
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆14Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆40Updated 5 months ago
• redcanaryco / vscode-attack
  Visual Studio Code extension for MITRE ATT&CK
  ☆51Updated 2 months ago
• signalscorps / file2stix
  ☆14Updated this week
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆40Updated 4 years ago
• blueteam0ps / det-eng-samples
  This repository contains sample log data that were collected after running adversary simulations in Microsoft 365
  ☆18Updated 6 months ago
• scythe-io / community-modules
  ☆14Updated this week
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆27Updated 2 weeks ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆66Updated 9 months ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆41Updated 4 months ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated last year
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆37Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• woanware / etw-event-dumper
  ☆31Updated 2 years ago
• bittib010 / AjourVolAutolity
  A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.
  ☆15Updated 6 months ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆12Updated 7 months ago