thinkst / canary-utilsLinks
Collection of useful Canary tools
☆84Updated last month
Alternatives and similar repositories for canary-utils
Users that are interested in canary-utils are comparing it to the libraries listed below
Sorting:
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆134Updated 2 years ago
- Open Threat Hunting Framework☆118Updated 2 years ago
- ☆66Updated 2 weeks ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 4 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆111Updated 2 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 9 months ago
- ☆119Updated last year
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆71Updated 2 years ago
- GUI tool which enables you to parse nessus scan files from Nessus and Tenable.SC by (C) Tenable, Inc. and exports results to a Microsoft …☆103Updated last month
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- Anvilogic Forge☆105Updated this week
- Dorothy is a tool to test security monitoring and detection for Okta environments☆184Updated 11 months ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated 2 months ago
- Memory Forensic System on Cloud☆90Updated last year
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆42Updated 2 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆83Updated last year
- ☆95Updated 2 years ago
- Fast IOC and YARA Scanner☆81Updated 5 years ago
- an awesome list of active defense resources☆124Updated 5 years ago
- Conference presentations☆47Updated last year
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆154Updated 3 years ago
- Active Directory Purple Team Playbook☆110Updated 2 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated 2 weeks ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆186Updated 3 years ago