![]() Dispatch - An open-source crisis management orchestration framework.CimSweep - A suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across all versions of Windows.Uncoder - An online translator for SIEM saved searches, filters, queries, API requests, correlation and Sigma rules.DeepBlueCLI - A PowerShell Module for Hunt Teaming via Windows Event Logs.Brosquery - A module for osquery to load Bro logs into tables.Bro-Osquery - Bro integration with osquery.Oriana - Lateral movement and threat hunting tool for Windows environments built on Django comes Docker ready.RedHunt aims to be a one stop shop for all your threat emulation and threat hunting needs by integrating attacker's arsenal as well as defender's toolkit to actively identify the threats in your environment. RedHunt-OS - A Virtual Machine for Adversary Emulation and Threat Hunting.Flare - An analytical framework for network traffic and behavioral analytics.Unfetter - A reference implementation provides a framework for collecting events (process creation, network connections, Window Event Logs, etc.) from a client machine and performing CAR analytics to detect potential adversary activity.Invoke-ATTACKAPI - A PowerShell script to interact with the MITRE ATT&CK Framework via its own API.Revoke-Obfuscation - PowerShell Obfuscation Detection Framework. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |