ionstorm (ion-storm)

ion-storm

Geek Repo

Location:root@localhost

Github PK Tool:Github PK Tool

ezoic increase your site revenue

ionstorm's repositories

exploitguard

Documentation and supporting script sample for Windows Exploit Guard

Language:PowerShellLicense:MITStargazers:3Issues:0Issues:0

KQL

KQL queries for Advanced Hunting

License:MITStargazers:2Issues:0Issues:0

sentinel-attack

Repository of sentinel alerts and hunting queries leveraging sysmon and the MITRE ATT&CK framework

Stargazers:2Issues:0Issues:0
Language:YARAStargazers:2Issues:1Issues:0
Language:PowerShellStargazers:1Issues:0Issues:0

Panache_Sysmon

Just another sysmon config

AZSentinel

PowerShell module for Azure Sentinel

License:MITStargazers:0Issues:0Issues:0

ConfluentCyberDemo

Analyze Zeek IDS data with ksqlDB running on Confluent Platform via Docker on your laptop. Or spin up an arbitrary number of AWS hosts, each running Confluent Platform and ksqlDB for use in an instructor-led workshop.

Language:PythonStargazers:0Issues:0Issues:0

cp-siem

A dockerized demo for illustrating how Confluent can be used in a SIEM Modernization use case.

Stargazers:0Issues:0Issues:0

cti

Cyber Threat Intelligence Repository expressed in STIX 2.0

License:NOASSERTIONStargazers:0Issues:0Issues:0
Stargazers:0Issues:0Issues:0

DLLSpy

DLL Hijacking Detection Tool

Language:C++License:LGPL-3.0Stargazers:0Issues:0Issues:0

DropNet

A tool that can be used to close network connections automatically with a given parameters

Language:PowerShellLicense:Apache-2.0Stargazers:0Issues:0Issues:0

grafana

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

License:Apache-2.0Stargazers:0Issues:0Issues:0

Graylog-Okta

An integration for Graylog and Okta

License:Apache-2.0Stargazers:0Issues:0Issues:0
Language:PythonStargazers:0Issues:0Issues:0

humio-fdr-utils

Package to help around crowdstrike/fdr data

License:Apache-2.0Stargazers:0Issues:0Issues:0

k8s-go-sigma-streamer

Repo for project GoAhead talk at ShmooCon 2022

License:NOASSERTIONStargazers:0Issues:0Issues:0
Stargazers:0Issues:0Issues:0

o365beat

Elastic Beat for fetching and shipping Office 365 audit events

Language:GoLicense:NOASSERTIONStargazers:0Issues:0Issues:0

ProcessBouncer

ProcessBouncer is a PoC for blocking malware with a process-based approach. With a little fine-tuning this allows to effectively block most of current ransomware that is out there.

License:GPL-3.0Stargazers:0Issues:0Issues:0

PS-SentinelOne

PowerShell module for SentinelOne API

License:MITStargazers:0Issues:0Issues:0
License:MITStargazers:0Issues:0Issues:0
License:Apache-2.0Stargazers:0Issues:0Issues:0

SentinelOne-ATTACK-Queries

MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity

License:MITStargazers:0Issues:0Issues:0

sentinelone-queries

Repository of SentinelOne Deep Visibility queries.

License:LGPL-2.1Stargazers:0Issues:0Issues:0

sigma

Generic Signature Format for SIEM Systems

Stargazers:0Issues:0Issues:0

solutions-terraform-jenkins-gitops

Demonstrates the use of Jenkins and Terraform to manage Infrastructure as Code using GitOps practices

Language:HCLLicense:Apache-2.0Stargazers:0Issues:0Issues:0