venom861's Stars
OpenCTI-Platform/opencti
Open Cyber Threat Intelligence Platform
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
sbousseaden/EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
mrwadams/attackgen
AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident response scenarios based on user-selected threat actor groups and your organisation's details.
atc-project/atomic-threat-coverage
Actionable analytics designed to combat threats
A3sal0n/CyberThreatHunting
A collection of resources for Threat Hunters
wagga40/Zircolite
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
microsoft/ics-forensics-tools
Microsoft ICSpector (ICS Forensics Tools framework) is an open-source forensics framework that enables the analysis of Industrial PLC metadata and project files.
P4T12ICK/ypsilon
Automated Use Case Testing
MazX0p/ThreatHound
mbabinski/Sigma-Rules
A repository of my own Sigma detection rules.
SigmaHQ/sigma-cli
The Sigma command line interface based on pySigma
0xAnalyst/CB-Threat-Hunting
jsecurity101/Detecting-Process-Injection-Techniques
This is a repository that is meant to hold detections for various process injection techniques.
magicsword-io/LOLBASline
Baseline a Windows System against LOLBAS
nasbench/sigma
Generic Signature Format for SIEM Systems
guys1444/KQL
All my KQL queries