unfetter-discover / unfetter
The main project for the Unfetter-Discover application. This is the project that will hold the configuration files, the docker-compose files, issue tracking, and documentation
☆412Updated 2 years ago
Alternatives and similar repositories for unfetter:
Users that are interested in unfetter are comparing it to the libraries listed below
- Main Build directory☆179Updated 5 years ago
- Identifies defensive gaps in security posture by leveraging Mitre's ATT&CK framework. #nsacyber☆163Updated 4 years ago
- Documentation of TheHive☆396Updated last year
- File Scanning Framework☆292Updated 3 years ago
- Sandia Cyber Omni Tracker (SCOT)☆246Updated 4 months ago
- An open source framework for enterprise level automated analysis.☆395Updated 2 years ago
- DPS' Lightweight Investigation Notebook☆427Updated last year
- Scripts and code referenced in CrowdStrike blog posts☆331Updated 5 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆500Updated 2 years ago
- Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review☆197Updated 8 years ago
- Threat Feed Aggregation, Made Easy☆167Updated 4 years ago
- CASCADE Server☆267Updated 2 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated last week
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆464Updated 6 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆562Updated 3 months ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆244Updated 3 years ago
- Data from a BRAWL Automated Adversary Emulation Exercise☆205Updated 4 years ago
- A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework☆352Updated 4 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆453Updated last year
- Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber☆401Updated 2 years ago
- Automated Use Case Testing☆167Updated 6 years ago
- A Python library for parsing, manipulating, and generating STIX content.☆243Updated 3 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Carbon Black API - Python language bindings☆145Updated 7 months ago
- CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities☆186Updated last year
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆349Updated 3 years ago
- Documentation of Cortex☆174Updated last year
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆336Updated 2 years ago