wolfvan / YaraRET
Carving tool based in Radare2 & Yara
☆16Updated 5 years ago
Related projects: ⓘ
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- ☆12Updated 4 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 4 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 4 years ago
- Cybersecurity Incidents Mind Maps☆32Updated 2 years ago
- Mass Triage Tools☆19Updated 2 months ago
- Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model☆12Updated 3 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆32Updated 7 months ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- ☆14Updated 6 years ago
- Simple SYSLOG client in Go☆21Updated 3 months ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 5 years ago
- Setting up a training environment for MISP☆11Updated last year
- ☆18Updated this week
- ☆15Updated 6 years ago
- Carving tool based in Radare2 & Yara☆15Updated 5 years ago
- ☆12Updated 6 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- Repository of Information sharing on threats and indicators☆12Updated 4 years ago
- Endpoint monitoring stack.☆17Updated 8 years ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆36Updated last year