11 results found Sort:

cyb3rxp
awesome-soc cyb3rxp
185
1.1k
cc0-1.0
30
A collection of sources of documentation, as well as field best practices, to build/run a SOC
soa soc tip ttp cert siem sirp soar csirt detection management purpleteam architecture mitre-attack risk-management incident-response
Created 2022-08-23
656 commits to main branch, last one 10 days ago
cisagov
decider cisagov
110
1.0k
other
28
A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.
ttp cybersecurity
Created 2023-02-15
185 commits to develop branch, last one 26 days ago
vectra-ai-research
MAAD-AF vectra-ai-research
52
338
gpl-3.0
13
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
ttp mitre azuread entra-id red-team security microsoft powershell microsoft365 cloud-security microsoft-graph security-testing adversary-emulation cloud-administration microsoft-azure-security identity-access-management
Created 2023-02-09
70 commits to main branch, last one 2 months ago
prodaft
malware-ioc prodaft
25
199
apache-2.0
24
This repository contains indicators of compromise (IOCs) of our various investigations.
apt ioc ttp malware ransomware threatintel cybersecurity threat-hunting malware-research malware-detection threatintelligence threat-intelligence
Created 2020-08-04
84 commits to master branch, last one about a month ago
curated-intel
Log4Shell-IOCs curated-intel
37
182
unknown
23
A collection of intelligence about Log4Shell and its exploitation activity.
cti ioc ttp java log4j m8220 mirai log4j2 swrort kinsing muhstik khonsari kirabash log4shell sitesloader threatintel cobalt-strike cybersecurity cve-2021-44228 threatintelligence
Created 2021-12-12
211 commits to main branch, last one 2 years ago
crocodyli
ThreatActors-TTPs crocodyli
22
161
unknown
6
Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups and evolving to other types of threats.
ttp malware ransomware threat-acto mitre-attack ransomware-group threat-intelligence
Created 2023-07-28
268 commits to main branch, last one 14 days ago
0xsyr0
Red-Team-Playbooks 0xsyr0
52
160
gpl-3.0
2
This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.
ttp redteam playbook offensive-security penetration-testing offensive-methodology
Created 2021-12-09
214 commits to master branch, last one about a month ago
vlegoy
rcATT vlegoy
32
105
mit
7
A python app to predict Att&ck tactics and techniques from cyber threat reports
ttp attack cyber-threat-intelligence multi-label-classification
Created 2019-09-07
41 commits to master branch, last one 4 years ago
knight0x07
DarkGate-Install-Script-via-DNS-TXT-Record knight0x07
4
36
mit
4
PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
dns poc ttp infosec malware darkgate threatintel cybersecurity threat-hunting malware-analysis malware-development reverse-engineering threat-intelligence
Created 2023-12-15
7 commits to main branch, last one 6 months ago
everettsouthwick
trusted-traveler-scheduler everettsouthwick
9
35
gpl-3.0
1
Python script for periodically fetching appointment dates from the Trusted Traveler Program API for Global Entry, Nexus, SENTRI, and FAST, with notifications to the user when new appointments are disc...
cbp ttp fast entry nexus docker global python sentri program trusted traveler globalentry global-entry trusted-traveler trusted-traveler-program
Created 2023-02-20
135 commits to main branch, last one 2 months ago
tstromberg
ttp-bench tstromberg
3
34
apache-2.0
4
Adversary emulation for EDR/SIEM testing (macOS/Linux)
edr ids ioc ttp security benchmark intrusion
Created 2022-03-02
72 commits to main branch, last one 4 months ago