PatrowlenginesPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 162 (+15.71%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+1410%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
blue-teaming-with-kqlRepository with Sample KQL Query examples for Threat Hunting
Stars: ✭ 102 (-27.14%)
Mutual labels: threat-hunting, siem, azure-sentinel
GDPatrolA Lambda-powered Security Orchestration framework for AWS GuardDuty
Stars: ✭ 50 (-64.29%)
Mutual labels: incident-response, siem, cloudsecurity
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (+159.29%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-25%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+60%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-84.29%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
WatcherWatcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Stars: ✭ 324 (+131.43%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
Ioc ExplorerExplore Indicators of Compromise Automatically
Stars: ✭ 73 (-47.86%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (-4.29%)
Mutual labels: incident-response, threat-hunting, threat-intelligence
WefflesBuild a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
Stars: ✭ 176 (+25.71%)
Mutual labels: incident-response, threat-hunting
ScotSandia Cyber Omni Tracker (SCOT)
Stars: ✭ 206 (+47.14%)
Mutual labels: incident-response, threat-intelligence
OrianaOriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
Stars: ✭ 152 (+8.57%)
Mutual labels: incident-response, threat-hunting
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (-22.14%)
Mutual labels: threat-hunting, threat-intelligence
Vast🔮 Visibility Across Space and Time
Stars: ✭ 227 (+62.14%)
Mutual labels: incident-response, siem
evtx-hunterevtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
Stars: ✭ 122 (-12.86%)
Mutual labels: incident-response, threat-hunting
mail to mispConnect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Stars: ✭ 61 (-56.43%)
Mutual labels: threat-hunting, threat-intelligence
LogESPOpen Source SIEM (Security Information and Event Management system).
Stars: ✭ 162 (+15.71%)
Mutual labels: secops, siem
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (-67.86%)
Mutual labels: incident-response, threat-intelligence