Starred repositories
💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline
Sample queries for Advanced hunting in Microsoft 365 Defender
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
Modules for expansion services, enrichment, import and export in MISP and other tools.
Clusters and elements to attach to MISP events or attributes (like threat actors)
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
Command line tool to ease aws cli authentication against ADFS (multi factor authentication with active directory)
A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.
Virtual Machine for Adversary Emulation and Threat Hunting
Ansible role for Red Hat 7 STIG Baseline
Web app that provides basic navigation and annotation of ATT&CK matrices
A generic interface and CLI for all endpoints of the Falcon Sandbox API
This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
Small and highly portable detection tests based on MITRE's ATT&CK.
cve-search - a tool to perform local searches for known vulnerabilities
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
The Elevation of Privilege Threat Modeling Game
STIX2 graph widget for Jupyter notebooks, powered by stixview library
Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to clo…