amirzargaran

amirzargaran's Stars

• zeek/zeek

  Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

  Language:C++6.6k1.2k

• coditori/highly-skilled-job-offers

  Sharing some info around job offers and interviews preparations

  61534

• weslambert/DinoSOARLab

  Security Onion + Automation + Response Lab including n8n and Velociraptor

  Language:Shell10613

• LetMeR00t/TA-thehive-cortex

  Technical add-on for Splunk related to TheHive/Cortex from TheHive project

  Language:Python5311

• amirzargaran/ArcSight-TheHive-Alert

  And now, for the first time, you can send alerts via action from ArcSight ESM Console to the TheHive when Correlation Rules are triggered.

  Language:Python3

• P1llus/ArcSight-Rest

  Python library for the ArcSight logger REST API

  Language:Python2710

• jaijhala/ArcSight--Elastic

  How to integrate ArcSight with Elastic

  53

• TheHive-Project/TheHive

  TheHive: a Scalable, Open Source and Free Security Incident Response Platform

  Language:Scala3.5k630

• advanced-threat-research/Yara-Rules

  Repository of YARA rules made by Trellix ATR Team

  Language:YARA57581

• counteractive/incident-response-plan-template

  A concise, directive, specific, flexible, and free incident response plan template

  Language:Makefile658223

• mitre-attack/bzar

  A set of Zeek scripts to detect ATT&CK techniques.

  Language:Zeek57276

• TheHive-Project/awesome

  A curated list of awesome things related to TheHive & Cortex

  17429

• meirwah/awesome-incident-response

  A curated list of tools for incident response

  7.8k1.5k

• GACWR/OpenUBA

  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]

  Language:Python400233