wfsec / osxstrata
OS X Strata builds upon Yelps OSXCollector, providing a user interface to analyze data collected from a potentially compromised system.
☆14Updated 5 years ago
Alternatives and similar repositories for osxstrata:
Users that are interested in osxstrata are comparing it to the libraries listed below
- Filters that process and transform the output of osxcollector☆78Updated 5 years ago
- Scripts from my book OS X Incident Response Scripting and Analysis -> https://www.amazon.com/dp/012804456X/ref=cm_sw_r_tw_dp_U_x_fQeLAb68…☆49Updated 8 years ago
- ☆14Updated 9 years ago
- Scripts for making Hubot a CND Sidekick☆59Updated 8 years ago
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆104Updated 7 years ago
- Enrich a host with open source security information☆27Updated 9 years ago
- This script helps automate application of DISA's security config to an OS X machine☆49Updated 11 years ago
- [DEPRECATED] A quickstart demo for Kolide tools☆52Updated 6 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- A Python library for being a CND Batman....☆35Updated 9 years ago
- Bringing DevOps to Forensics☆34Updated 10 years ago
- pan-stix☆19Updated 7 years ago
- ☆64Updated 3 years ago
- ☆36Updated 8 years ago
- Virustotal Lookup filter for Logstash☆16Updated 7 years ago
- Shell scripts to audit OS X security using CIS Benchmarks.☆18Updated 8 years ago
- Just another tool to extract Indicator of compromise (ioc) from files☆29Updated 9 years ago
- Use OpenDNS's investigate API to find newly observed domains which match a brand or string☆17Updated 8 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Script for generating Bro intel files from pdf or html reports☆76Updated 9 years ago
- Dockerfiles for NSM tools☆84Updated 7 years ago
- An integration between Tanium and Osquery☆12Updated 7 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 9 years ago
- Osquery Mangement Server☆113Updated 4 years ago
- Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…☆66Updated 7 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆151Updated 2 months ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Resources for HFS+ Forensics☆36Updated 9 years ago
- CRITs IOC Visualization in Maltego☆28Updated 10 years ago