Matt Anderson's repositories
analyst-scripts
Scripts to analyze stuff
Language:Python000
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:CMIT000
awesome-malware-analysis
Defund the Police.
NOASSERTION000
blue-jupyter
Jupyter Notebooks for the Blue Team
Language:Jupyter NotebookMIT000
C2-Hunter
Extract C2 Traffic
Language:C++000
commands-for-sec
Useful commands for infosec
000
DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
Language:YARA000
HijackLibs
Project for tracking publicly disclosed DLL Hijacking opportunities.
GPL-3.0000
Security-Datasets
Re-play Security Events
Language:PowerShellMIT000
sigma
Main Sigma Rule Repository
NOASSERTION000
ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
MIT000
GPL-3.0000