Practical Orientation Of MVISION EDR Query Language
☆34Feb 10, 2023Updated 3 years ago
Alternatives and similar repositories for RTS-Queries
Users that are interested in RTS-Queries are comparing it to the libraries listed below
Sorting:
- Automated threat intelligence collection with McAfee ATD, OpenDXL and MISP☆22Feb 21, 2020Updated 6 years ago
- Integration between MISP platform and McAfee MVISION EDR☆14Mar 14, 2022Updated 3 years ago
- Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana☆10Aug 17, 2018Updated 7 years ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Feb 12, 2020Updated 6 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- ☆18May 31, 2022Updated 3 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Jul 11, 2022Updated 3 years ago
- THOR Thunderstorm Collectors☆25Feb 26, 2026Updated last week
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- Repository for SPEED SIEM Use Case Framework☆60May 2, 2020Updated 5 years ago
- A CALDERA plugin☆27Feb 24, 2026Updated last week
- This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attac…☆33Apr 15, 2021Updated 4 years ago
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year
- Cheat sheets for threat hunting, detection and other stuff.☆34Oct 7, 2022Updated 3 years ago
- My Jupyter Notebooks☆36Mar 14, 2025Updated 11 months ago
- Run Velociraptor on Security Onion☆40Jul 27, 2022Updated 3 years ago
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- ☆14Feb 18, 2026Updated 2 weeks ago
- ☆14Feb 6, 2026Updated 3 weeks ago
- ☆37Dec 17, 2020Updated 5 years ago
- Threat Hunting tool about Sysmon and graphs☆337May 28, 2023Updated 2 years ago
- User Feedback Space of #MitreAssistant☆38May 19, 2023Updated 2 years ago
- pySigma Splunk backend☆41Updated this week
- OpenDXL Python Client☆94Jan 31, 2025Updated last year
- INOFFICIAL nfdump with libnfread: library for reading netflow records from nfdump files☆13Jan 28, 2014Updated 12 years ago
- Threat Network Detection in Online Social Networks☆10Jan 20, 2017Updated 9 years ago
- Some YARA rules i will add from time to time☆12May 31, 2019Updated 6 years ago
- ☆10Oct 22, 2017Updated 8 years ago
- A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD☆10Nov 7, 2023Updated 2 years ago
- Project that creates a Kubernetes environment in Azure (AKS) and protects it with CloudGuard CSPM / Workload and Appsec technologies☆10Jun 12, 2023Updated 2 years ago
- Mailpl0it is a small utility that hunts the homepage of exploit-db looking for user supplied quer(y/ies) and notifies the user via email …☆31Aug 5, 2022Updated 3 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆40Apr 8, 2021Updated 4 years ago
- ☆13Oct 30, 2022Updated 3 years ago
- A United States map CTFd theme☆12Aug 28, 2017Updated 8 years ago
- OpenDXL Console is a high-level web-based console for interacting with a DXL fabric☆11Mar 29, 2021Updated 4 years ago
- CLI generator for Velociraptor offline collector☆16Oct 10, 2025Updated 4 months ago
- Tools once available from McAfee but are no longer☆13May 9, 2024Updated last year
- A fast pure-Python search engine☆12Apr 9, 2009Updated 16 years ago
- ☆14Feb 7, 2019Updated 7 years ago