dfir-ronin's repositories
APT-OpenIOC-Detection-Rules
This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat groups.
sigma
Generic Signature Format for SIEM Systems
NOASSERTION000
community-threats
A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday
MIT000
Sigma-Rules
Rules generated from our investigations.