vulsio / go-cti
Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
☆33Updated this week
Alternatives and similar repositories for go-cti:
Users that are interested in go-cti are comparing it to the libraries listed below
- A Go implementation and parser for Sigma rules.☆88Updated 8 months ago
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 4 years ago
- APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)☆53Updated 5 months ago
- A CALDERA plugin☆66Updated last month
- Collect autorun records from running system☆61Updated 3 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- A CALDERA plugin☆76Updated 2 weeks ago
- Golang Parser for Microsoft Event Logs☆102Updated 3 months ago
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆65Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- Caldera plugin to deploy "humans" to emulate user behavior on systems☆28Updated last year
- A MITRE Caldera plugin☆43Updated 5 months ago
- simple YARA-based IOC scanner☆169Updated 2 months ago
- ☆43Updated 2 years ago
- Go library for ETW (Event Tracing for Windows) events processing☆65Updated 2 years ago
- gyp: A pure Go YARA parser☆107Updated last year
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆49Updated last month
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago
- A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data☆23Updated last week
- Simplified go-cat agent for caldera☆10Updated last year
- Firepit - STIX Columnar Storage☆16Updated 11 months ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆72Updated last month
- Golang library that implements a sigma log rule parser and match engine.☆95Updated 9 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 11 months ago
- Open-source Fabric templates for cybersecurity and compliance☆17Updated 3 months ago
- A repository of Sysmon For Linux configuration modules☆15Updated 3 years ago
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆71Updated last year
- A Go implementation of JARM☆118Updated 2 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆51Updated 2 years ago