JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

A Linux Auditd rule set mapped to MITRE's Attack Framework

Recon Hunt Queries

#ThreatHunting #DFIR #Malware #Detection Mind Maps

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

Set of SIGMA rules (>250) mapped to MITRE Att@k tactic and techniques

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

An Active Defense and EDR software to empower Blue Teams

A repository of sysmon configuration modules

Windows Events Attack Samples

A curated list of awesome threat detection and hunting resources

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

SSD: Single Shot MultiBox Detector | a PyTorch Tutorial to Object Detection

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

Official implementation of Character Region Awareness for Text Detection (CRAFT)

Detection of CCTag markers made up of concentric circles.

mean Average Precision - This code evaluates the performance of your neural net for object recognition.