693 skills found · Page 1 of 24
MISP / MISPMISP (core software) - Open Source Threat Intelligence and Sharing Platform
OISF / SuricataSuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
elceef / DnstwistDomain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
SwiftOnSecurity / Sysmon ConfigSysmon configuration file template with default high-quality event tracing
0x4D31 / Awesome Threat Detection✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
intelowlproject / IntelOwlIntelOwl: manage your Threat Intelligence at scale
OTRF / ThreatHunter PlaybookA community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Security-Onion-Solutions / SecurityonionSecurity Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
InQuest / Awesome YaraA curated list of awesome YARA rules, tools, and people.
Cyb3rWard0g / HELKThe Hunting ELK
alexandreborges / MalwoverviewMalwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, and IPInfo, as well as to check for vulnerabilities in Android devices. Now, it also retrieves vulnerability records from NIST and VulnCheck..
WithSecureLabs / ChainsawRapidly Search and Hunt through Windows Forensic Artefacts
Security-Onion-Solutions / Security OnionSecurity Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
teler-sh / TelerReal-time HTTP Intrusion Detection
Yamato-Security / HayabusaHayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
olafhartong / Sysmon ModularA repository of sysmon configuration modules
blackorbird / APT REPORTInteresting APT Report Collection And Some Special IOCs
Neo23x0 / Signature BaseYARA signature and IOC database for my scanners and tools
sbousseaden / EVTX ATTACK SAMPLESWindows Events Attack Samples
elastic / Detection RulesNo description available
