utmstack / UTMStack

Related projects: ⓘ

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆188Updated this week
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆160Updated 3 weeks ago
• SecurityBrewery / catalyst
  Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident re…
  ☆326Updated last month
• securityjoes / MasterParser
  MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
  ☆572Updated 3 months ago
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆145Updated last week
• AtlasInsideCorp / UTMStackCorrelationRules
  ☆17Updated this week
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆556Updated last week
• sqall01 / LSMS
  Linux Security and Monitoring Scripts
  ☆317Updated last year
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆150Updated 2 years ago
• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆71Updated 2 months ago
• OpenCTI-Platform / docker
  OpenCTI Docker deployment helpers
  ☆153Updated this week
• V1D1AN / S1EM
  This project is a SIEM with SIRP and Threat Intel, all in one.
  ☆404Updated 7 months ago
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆197Updated last month
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆68Updated 3 weeks ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆174Updated 8 months ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆138Updated this week
• MegaManSec / LDAP-Monitoring-Watchdog
  LDAP Watchdog: A real-time linux-compatible LDAP monitoring tool for detecting directory changes, providing visibility into additions, mo…
  ☆166Updated 8 months ago
• OpenBAS-Platform / openbas
  Open Breach and Attack Simulation Platform
  ☆469Updated this week
• NUKIB / misp
  Docker image for MISP
  ☆109Updated last week
• hevnsnt / Awesome_Incident_Response
  Awesome Incident Response
  ☆257Updated 5 months ago
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆48Updated 2 weeks ago
• Admyral-Security / admyral
  🤖 Admyral's Python SDK simplifies writing workflow automations for Security Engineers
  ☆259Updated this week
• cloudfence / opnsense-wazuh
  Tools to integrate 2 great security tools OPNsense and Wazuh
  ☆27Updated 3 years ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆182Updated last year
• MutableSecurity / mutablesecurity
  CLI program for automating the setup, configuration, and use of cybersecurity solutions
  ☆43Updated last year
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆112Updated 2 months ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆83Updated 2 years ago
• hackertarget / pcap-did-what
  Analyze pcaps with Zeek and a Grafana Dashboard
  ☆160Updated 3 months ago
• factionsecurity / faction
  Pen Test Report Generation and Assessment Collaboration
  ☆413Updated 3 weeks ago
• CERT-Polska / mailgoose
  A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.
  ☆132Updated last week
• dfir-iris / iris-web
  Collaborative Incident Response platform
  ☆1,031Updated this week