socologize
verb (used with or without object), 1. to explain, study, or interpret in people, process and technologies. 2. to provide cyber defense effectively
CiscoChucktown, SC
Pinned Repositories
APTnotes
Various public documents, whitepapers and articles about APT campaigns
atc-mitigation
Actionable analytics designed to combat threats based on MITRE's ATT&CK.
atc-react
A knowledge base of actionable Incident Response techniques
atomic-red-team
Small and highly portable detection tests.
awesome-osx-command-line
Use your OS X terminal shell to do awesome things.
demos
Prototype Demo Code
GRASSMARLIN
NSA Information Assurance tool that provides situational awareness for ICS/SCADA network security assessments. iadgov
phantom-rba
Share RBA-specific playbooks, apps, and custom functions
phantom-test-harness
Test harness for a more pleasurable app building experience
sxo-05-security-workflows
Workflows, atomic actions, and documentation for SecureX orchestration
socologize's Repositories
socologize/phantom-rba
Share RBA-specific playbooks, apps, and custom functions
socologize/phantom-test-harness
Test harness for a more pleasurable app building experience
socologize/atc-mitigation
Actionable analytics designed to combat threats based on MITRE's ATT&CK.
socologize/atc-react
A knowledge base of actionable Incident Response techniques
socologize/sxo-05-security-workflows
Workflows, atomic actions, and documentation for SecureX orchestration
socologize/atomic-threat-coverage
Actionable analytics designed to combat threats based on MITRE's ATT&CK.
socologize/DeTTECT
Detect Tactics, Techniques & Combat Threats
socologize/email2pdf
Script to convert emails to PDF from the command-line, as well as detach recognized attachments. Helps to process incoming emails and assist automatically with a non-paper paperwork workflow. Designed to work in tandem with getmail to convert forwarded emails to PDF automatically.
socologize/ocsf-schema
OCSF Schema
socologize/OpenSIEM-Logstash-Parsing
SIEM Logstash parsing for more than hundred technologies
socologize/osquery-configuration
A repository for using osquery for incident detection and response
socologize/parser
socologize/phantom
Sample Phantom Playbooks
socologize/phantom-1
community apps for Phantom security orchestration platform
socologize/phantom-apps
Phantom Apps Repo
socologize/phantom-browserless
Splunk Phantom App for Browserless/chrome
socologize/phantom-docker
Phantom in a container
socologize/phantom_build_scripts
socologize/phantom_demo
socologize/phantom_pov
Material for a Phantom POV event
socologize/phantom_report
Python script to create a timeline PDF report from Phantom.us.
socologize/phzcatman
socologize/playbooks
Phantom Orchestration Playbooks
socologize/rastrea2r
Collecting & Hunting for IOCs with gusto and style
socologize/rastrea2r-server
Restful Server to handle requests from rastrea2r client
socologize/sandflysecurity
socologize/security_content
Splunk Security Content
socologize/SOAR_Autobahn
socologize/sxo-05-third-party-workflows
socologize/web-icons
A flexible icon family for the web