#Threat
Showing 20 of 20 repositories tagged #threat, ranked by stars
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Real-time HTTP Intrusion Detection
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
The Correlated CVE Vulnerability And Threat Intelligence Database API
SIEM Tactics, Techiques, and Procedures
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigating security risks.
a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
16,432 Free Yara rules created by
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.
PatrowlHears - Vulnerability Intelligence Center / Exploits
MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
Curating Falco rules with MITRE ATT&CK Matrix
ATLAS - Malware Analysis Description
A tool box with 174 useful and common Linux tools for penetration testing and security audits.