All Git Users → OTRF

15 open source projects by OTRF

[ Open user page on Github ]

1. Threathunter Playbook

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

✭ 2,879

python YARA Dockerfile dfir threat-hunting sysmon hunting hunter mitre hypothesis hunting-campaigns mitre-attack-db

2. Blacksmith

Building environments to replicate small networks and deploy applications

✭ 133

powershell

3. Azure Sentinel2go

Azure Sentinel2Go is an open source project developed to expedite the deployment of an Azure Sentinel lab.

✭ 127

shell

4. Detection Hackathon Apt29

Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets

✭ 87

jupyter-notebook

5. Notebooks Forge

A collection of notebooks built for defensive and offensive operations.

✭ 63

jupyter-notebook

6. Mordor

Re-play Adversarial Techniques

✭ 895

python

7. Ossem

Open Source Security Events Metadata (OSSEM)

✭ 794

python

8. Attack Python Client

Python Script to access ATT&CK content available in STIX via a public TAXII server

✭ 342

jupyter-notebook

9. OSSEM-DD

OSSEM Data Dictionaries

✭ 31

python

10. API-To-Event

A repo to document API functions mapped to security events across diverse platforms

✭ 69

11. infosec-jupyter-book

The Infosec Community Definitive Guide to Jupyter Notebooks

✭ 76

Dockerfile

12. Security-Datasets

Re-play Security Events

✭ 1,259

powershell python Dockerfile

13. openhunt

No description, website, or topics provided.

✭ 29

python

14. SimuLand

Cloud Templates and scripts to deploy mordor environments

✭ 115

shell powershell python Dockerfile

15. Set-AuditRule

Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity

✭ 74

powershell

1-15 of 15 user projects