SiacSIAC is an enterprise SIEM built on open-source technology.
Stars: ✭ 100 (-45.36%)
Mutual labels: incident-response, osquery
rhqRecon Hunt Queries
Stars: ✭ 66 (-63.93%)
Mutual labels: incident-response, osquery
Osquery ConfigurationA repository for using osquery for incident detection and response
Stars: ✭ 618 (+237.7%)
Mutual labels: incident-response, osquery
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-42.62%)
Mutual labels: incident-response
Information Security TasksThis repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Stars: ✭ 108 (-40.98%)
Mutual labels: incident-response
SleuthkitThe Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Stars: ✭ 1,948 (+964.48%)
Mutual labels: incident-response
WefflesBuild a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
Stars: ✭ 176 (-3.83%)
Mutual labels: incident-response
ExposqGo app that dispatches osquery to multi-machines
Stars: ✭ 89 (-51.37%)
Mutual labels: osquery
Misp TaxonomiesTaxonomies used in MISP taxonomy system and can be used by other information sharing tool.
Stars: ✭ 168 (-8.2%)
Mutual labels: incident-response
Thehive4pyPython API Client for TheHive
Stars: ✭ 143 (-21.86%)
Mutual labels: incident-response
Osq Ext BinExtension to osquery windows that enhances it with real-time telemetry, log monitoring and other endpoint data collection
Stars: ✭ 142 (-22.4%)
Mutual labels: osquery
OrianaOriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
Stars: ✭ 152 (-16.94%)
Mutual labels: incident-response
Aurora Incident ResponseIncident Response Documentation made easy. Developed by Incident Responders for Incident Responders
Stars: ✭ 171 (-6.56%)
Mutual labels: incident-response
ThehiveTheHive: a Scalable, Open Source and Free Security Incident Response Platform
Stars: ✭ 2,300 (+1156.83%)
Mutual labels: incident-response
Edr Testing ScriptTest the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
Stars: ✭ 136 (-25.68%)
Mutual labels: incident-response
ThreathuntThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.
Stars: ✭ 92 (-49.73%)
Mutual labels: incident-response
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (-26.78%)
Mutual labels: incident-response
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+1055.19%)
Mutual labels: incident-response
Osquery Extensionsosquery extensions by Trail of Bits
Stars: ✭ 180 (-1.64%)
Mutual labels: osquery