ascivv

ascivv's Stars

• Silv3rHorn/evtx2json

  evtx2json extracts events of interest from event logs, dedups them, and exports them to json.

  Language:Python417

• activecm/rita-legacy

  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

  Language:Go2.5k362

• mitre-attack/attack-navigator

  Web app that provides basic navigation and annotation of ATT&CK matrices

  Language:TypeScript2.1k614

• SwiftOnSecurity/sysmon-config

  Sysmon configuration file template with default high-quality event tracing

  4.9k1.7k

• SecurityRiskAdvisors/VECTR

  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

  1.4k165

• alphasoc/flightsim

  A utility to safely generate malicious network traffic patterns and evaluate controls.

  Language:Go1.3k142

• redcanaryco/atomic-red-team

  Small and highly portable detection tests based on MITRE's ATT&CK.

  Language:C10.3k2.9k

• sans-blue-team/freq.py

  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy calculations. Uses character pair frequency analysis to determine the likelihood of tested strings of characters occurring.

  Language:Python12527

• sans-blue-team/DeepBlueCLI

  Language:PowerShell2.3k365

• davehull/Kansa

  A Powershell incident response framework

  Language:PowerShell1.6k270

• bwya77/O365HTMLReport

  Create a interactive HTML report for Office 365 using PowerShell

  Language:PowerShell10932