vulsio / go-cti
Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
☆32Updated last week
Alternatives and similar repositories for go-cti:
Users that are interested in go-cti are comparing it to the libraries listed below
- A Go implementation and parser for Sigma rules.☆86Updated 6 months ago
- A MITRE Caldera plugin☆42Updated 4 months ago
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆62Updated 11 months ago
- ☆41Updated 2 years ago
- APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)☆53Updated 3 months ago
- Collect autorun records from running system☆61Updated 3 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- OSSEM Common Data Model☆55Updated 2 years ago
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 3 years ago
- Simulates a compromise in a cloud and container environment☆32Updated 3 months ago
- A CALDERA plugin☆75Updated 2 weeks ago
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆75Updated last year
- Golang Parser for Microsoft Event Logs☆101Updated 2 months ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- A Self-Contained Open-Source Cyberattack Experimentation Testbed☆40Updated 3 weeks ago
- A CALDERA plugin☆65Updated this week
- This repository contains generated contextual data utilized by pyattck.☆19Updated 3 weeks ago
- gyp: A pure Go YARA parser☆105Updated last year
- Automatic detection engineering technical state compliance☆55Updated 8 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆80Updated 5 months ago
- Osquery Resources☆60Updated 5 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 11 months ago
- ☆52Updated this week
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 2 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 10 months ago
- A forensic evidence acquirer☆86Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago