Mike's starred repositories
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
phantom-apps
Phantom Apps Repo
SA-mitre
This app provides a method to ingest MITRE ATT&CK tactics, techniques, and subtechniques into Splunk events. The app contains a mitre_techniques KVStore with the metadata provided from MITRE to help enrich alerts and ES Correlations without needing to navigate back to MITRE.
awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
sleuthkit
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
metasploit-framework
Metasploit Framework
ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.