syloktools

followers

following

stars

TikTok USDS

London, GB

Robert Nixon's repositories

MISP-QRADAR-REFERENCE-SET-BUILDER

Pulls IOCs from MISP and adds the to reference sets in QRadar

Language:PythonGPL-3.033 4 4

misp_automation

Language:Python2 10

ATTACKmd

Mitre ATT&CK framework tactics and techniques in markdown format for best use in Obsidian

Language:Shell100

mhn

Modern Honey Network

Language:PythonLGPL-2.1100

sec-vault-gen

Python utility to generate filesystem content for Obsidian.

Language:PythonMIT100

sightingdb

SightingDB is a database for Sightings

Language:RustMIT100

AIL-framework

AIL framework - Analysis Information Leak framework

Language:PythonAGPL-3.0000

chepy

Chepy is a python lib/cli equivalent of the awesome CyberChef tool.

Language:PythonGPL-3.0000

Cortex-Analyzers

Cortex Analyzers Repository

Language:PythonAGPL-3.0000

DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

MIT000

DetectionLabELK

DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.

Language:PowerShellMIT000

DocIntel

Open Source Platform for storing, organizing, and searching documents related to cyber threats

NOASSERTION000

MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)

Language:PHPAGPL-3.0000

MISP-maltego

Set of Maltego transforms to inferface with a MISP instance

Language:PythonMIT000

misp-modules

Modules for expansion services, import and export in MISP

Language:PythonAGPL-3.0000

misp-playbooks

MISP Playbooks

BSD-2-Clause000

misp-taxonomies

Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.

Language:PythonNOASSERTION000

MISP-TIE

Integration between MISP platform and McAfee Threat Intelligence Exchange

Language:PythonApache-2.0000

misp-warninglists

Warning lists to inform users of MISP about potential false-positives or other information in indicators

Language:Python000

misp-website

MISP website (hugo-based)

Language:HTMLNOASSERTION000

misp-workflow-blueprints

Library of blueprints usable in MISP Workflows

Language:ShellNOASSERTION000

nviso-cti

Language:YARA000

paradigm

Paradigm is an open source tool that looks at your network landscape and determines what is actually accessible via the internet.

000

pptxurlcheck

Parse a PowerPoint PPTX file, extracting all URL's from notes and slides, and test for validity

Language:PythonMIT000

soc_workflow_app_ce

SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.

Language:JavaScriptNOASSERTION000

sof-elk

Configuration files for the SOF-ELK VM, used in SANS FOR572

Language:ShellGPL-3.0000

sysmon-config

Sysmon configuration file template with default high-quality event tracing

000

tbat

Threat Box Assessment Tool

Language:JavaScriptGPL-3.0000

ThreatIntelligenceDiscordBot

Gets updates from various clearnet domains and ransomware threat actor domains

MIT000

Ultimate-Forensics-VM

Evolving directions on building the best Open Source Forensics VM

Language:Shell000