jstnk9's repositories

TIBER-Cases

TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to TIBER-EU processes.

Language:PythonLicense:Apache-2.0Stargazers:23Issues:5Issues:0

ETW-Almulahaza

ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system

Language:PythonLicense:Apache-2.0Stargazers:11Issues:1Issues:0

MISP

Here I'll store some scripts and other stuff related to MISP.

Language:PythonLicense:Apache-2.0Stargazers:7Issues:1Issues:0

neossins

Neossins is an application based on TypeRef Hasher that belongs to G Data Cyberdefense.

Language:PythonLicense:Apache-2.0Stargazers:6Issues:1Issues:0

ac3-threat-sightings-fork

A threat sighting collects the behavior of a real threats and the observables used during its engagement.

Language:PythonLicense:Apache-2.0Stargazers:0Issues:0Issues:0

EnableWindowsLogSettings

Documentation and scripts to properly enable Windows event logs.

Language:BatchfileLicense:GPL-3.0Stargazers:0Issues:0Issues:0
Stargazers:0Issues:1Issues:0

LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Language:XSLTLicense:GPL-3.0Stargazers:0Issues:0Issues:0

misp-galaxy

Clusters and elements to attach to MISP events or attributes (like threat actors)

Language:PythonLicense:NOASSERTIONStargazers:0Issues:0Issues:0

Mnemo-Reports

reports generated by the Cyber Threat Intelligence Mnemo team

Language:YARAStargazers:0Issues:0Issues:0

pywintrace

ETW Python Library

Language:PythonLicense:Apache-2.0Stargazers:0Issues:0Issues:0

sigma

Generic Signature Format for SIEM Systems

Language:PythonLicense:NOASSERTIONStargazers:0Issues:0Issues:0

vt-public-crowdsourced-yara

Share your Yara rules with VirusTotal

Language:YARALicense:NOASSERTIONStargazers:0Issues:0Issues:0