"topic:threat" — Search

174 results for “topic:threat”

Real-time HTTP Intrusion Detection

analyze-logsgogolangidsintrusionintrusion-detectionintrusion-detection-systemiocsloglog-analyzerlogsthreatthreat-analyzerthreat-huntingthreat-intelligencethreat-rules

Yamato-Security/hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Rust3.1k259Updated 2 weeks ago

attackcybersecuritydetectiondfireventforensicshayabusahuntingincidentincident-responselogsresponserustsecuritysecurity-automationsigmathreatthreat-huntingwindowsyamato

activecm/rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Go2.5k356Updated 2 months ago

analysisanalyticsbeaconbeacon-snifferbhisblueteambro-idsdgadnsdns-tunnelinglogsnetwork-trafficoffensive-countermeasuresritascanningsecuritythreat

mandiant/ThreatPursuit-VMArchived

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

PowerShell1.3k261Updated 2 years ago

analyticscyberdata-sciencefireeyeintelligenceintelligence-analysismalwaremandiantthreatthreathuntingthreatintelligencevirtual-machine

certtools/intelmq

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Python1.1k313Updated 1 month ago

alertsautomationcertcsirtcybersecurityfeedshandlingihapincidentincident-responseintelligenceiocmalwarephishingpythonthreat

toolswatch/vFeedArchived

The Correlated CVE Vulnerability And Threat Intelligence Database API

Python946242Updated 4 years ago

capeccommon-vulnerability-exposurecvecweexploitsintelligence-gatheringovalpythonscapthreatthreat-intelligencethreat-intelligence-databasethreatintelvfeedvulnerabilityvulnerability-database-entryvulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scanners

cyberark/SkyArk

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

PowerShell910162Updated 1 year ago

adminsattackerawsazurecloudcloud-securitypowershellprivilegessecurity-toolsthreat

Yamato-Security/WELA-deprecated

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

PowerShell77981Updated 3 years ago

analysisdfireventforensicshuntingincidentloglogsresponsesigmathreattimelinewindows

TonyPhipps/SIEM

SIEM Tactics, Techiques, and Procedures

PowerShell703112Updated 2 days ago

analysisbaselineblueforensicshuntincidentlogmonitorpurplereconredresponsescansecuritysiemsocteamthreatthreat-huntingtriage

stanfrbd/cyberbro

A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.

Python61157Updated 1 week ago

blueteamcticyber-threat-intelligencecybersecuritydfirdockerhashincident-responseinfoseciocipinfoosintosint-pythonpythonsecuritysecurity-toolsthreatthreat-huntingthreat-intelligencevirustotal

manifoldfinance/defi-threat

a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance

JavaScript49953Updated 1 year ago

advisoriesblockchaincvedefidefi-threaterc20erc721ethereumevminfoseckill-chainnftssmart-contractssmart-contracts-auditsoliditythreatthreat-matrix

TalEliyahu/Threat_Model_Examples

A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigating security risks.

48878Updated 9 months ago

cybersecurityrisk-assessmentthreatthreat-analysisthreat-modeling

TonyPhipps/Meerkat

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

PowerShell48085Updated 1 year ago

analysisbaselineblueforensicshuntincidentlogmonitorpurplereconredresponsescansecuritysiemsocteamthreatthreat-huntingtriage

EXP-Tools/threat-broadcast

威胁情报播报

Python408188Updated 3 hours ago

broadcastcveprogrammingsafethreat

SupportIntelligence/Icewater

16,432 Free Yara rules created by

YARA39160Updated 6 years ago

clusterdnamalware-analysisthreatyara

opencybersecurityalliance/kestrel-lang

Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.

Python32451Updated 1 year ago

cybersecurityhacktoberfestlanguagesecuritysecurity-automationsecurity-toolsthreatthreat-huntingthreat-intelligencethreatintel

Aabyss-Team/Ban-Hacker-IP-Plan

国内恶意IP封禁计划，还赛博空间一片朗朗乾坤

27533Updated 9 months ago

ban-botban-hostsban-iphackerintelligenceiocmalicethreatthreat-intelligence

opencybersecurityalliance/stix-shifter

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

Python261229Updated 2 weeks ago

cybersecurityhacktoberfestocsfpythonsecuritysecurity-automationsecurity-toolsstixstix2threatthreat-huntingthreat-intelligencethreatintel

rastrea2r/rastrea2r

Collecting & Hunting for IOCs with gusto and style

Python24152Updated 4 years ago

huntingiocsecurity-toolsthreat

Yamato-Security/suzaku

Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.

Rust1719Updated 3 months ago

awsazurecloudtraildetectiondfirengineeringentraforensicsgcphuntingidincidentlogmonitoringresponsesecuritysigmathreat

Patrowl/PatrowlHears

PatrowlHears - Vulnerability Intelligence Center / Exploits

Python16655Updated 1 day ago

apiautomationcpecvecvsscybersecurityexploitsexploits-scriptspatrowlsecopssocthreatthreat-huntingthreat-intelligencethreatintelvulnerabilitiesvulnerability-detectionvulnerability-identificationvulnerability-intelligencevulnerability-scanning

yevh/TaaC-AI

AI-driven Threat modeling-as-a-Code (TaaC-AI)

HTML16123Updated 8 months ago

aiapplication-securityclaude-3devsecopsgptgpt-3gpt-4llm-securitymistral-7bsecure-developmenttaacthreatthreat-modelingthreat-modeling-from-codethreat-modeling-toolthreat-models

SoulSec/resource-threat-hunting

Repository resource for threat hunter

15833Updated 7 years ago

threatthreat-huntingthreat-intelligencethreatintel

docbleach/DocBleachArchived

:shower: Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

Java15634Updated 2 years ago

content-disarm-reconstructjavaofficepdfsecuritysecurity-toolsthreat

Graylog2/graylog-plugin-threatintel

Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases

Java15518Updated 2 years ago

abusegrayloggraylog-pluginotxspamhausthreatthreat-analysisthreat-scorethreatintelwhoiswhois-informationwhois-lookup

usnistgov/mobile-threat-catalogue

NIST/NCCoE Mobile Threat Catalogue

HTML15035Updated 7 months ago

cataloguemobilenistthreat

ine-labs/ThreatSeeker

ThreatSeeker: Threat Hunting via Windows Event Logs

Python12414Updated 2 years ago

evtxlog-analysissysmonthreatthreat-detectionthreat-intelligencewindows

jymcheong/SysmonResources

Consolidation of various resources related to Microsoft Sysmon & sample data/log

Python12223Updated 4 years ago

sysmonthreatthreat-hunting

monarc-project/MonarcAppFO

MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU

Shell11943Updated 1 week ago

casescybersecuritygovernancemonarcrisk-analysisrisk-assessmentrisk-evaluationrisk-treatmentsecuritythreatvulnerabilities

CERTCC/Vulnerability-Data-ArchiveArchived

With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

9621Updated 1 year ago

certcvethreatthreat-analysisthreat-intelligencethreatintelvulnerabilityvulnerability-datavulnerability-notesvulnerability-report

Page 1 of 6