#
threat
Here are 100 public repositories matching this topic...
Real-time HTTP Intrusion Detection
go
golang
log
logs
threat
ids
intrusion-detection
threat-hunting
iocs
log-analyzer
intrusion
intrusion-detection-system
threat-intelligence
threat-analyzer
analyze-logs
threat-rules
-
Updated
Jul 20, 2021 - Go
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
data-science
intelligence
analytics
virtual-machine
malware
threat
cyber
fireeye
intelligence-analysis
mandiant
threatintelligence
threathunting
-
Updated
Jan 20, 2021 - PowerShell
The Correlated CVE Vulnerability And Threat Intelligence Database API
python
threat
exploits
vulnerability
scap
vulnerability-databases
threatintel
cve
oval
vulnerability-detection
vulnerability-identification
vulnerability-scanners
cwe
capec
intelligence-gathering
threat-intelligence
vulnerability-database-entry
threat-intelligence-database
vfeed
common-vulnerability-exposure
-
Updated
May 28, 2021 - Python
wagner-certat
commented
Jun 11, 2021
https://intelmq.readthedocs.io/en/latest/user/bots.html#filter
Currently the docs say:
filter_regex - attribute determines if the filter_value shall be treated as regular expression or not.
If this attribute is not empty, the bot uses python’s “search” function to evaluate the filter.
It is not clear from this text, that the "search" function is re.search and what it implies (as
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
-
Updated
Mar 17, 2021 - PowerShell
colesmj
commented
Oct 21, 2018
"AA03": { "description": "Weakness in SSO Authorization", "source": (Process, Element), "target": (Process, Server), "condition": "target.implementsAuthenticationScheme is False", },
What if the Process implements BasicAuth or uses mutual TLS (neither of which is SSO)?
If the Process uses SAML or OAuth, then maybe.
Maybe authenticationScheme as a string var is neces
Collecting & Hunting for IOCs with gusto and style
-
Updated
Jul 26, 2021 - Python
Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
graylog
threat-score
whois
threat
abuse
threatintel
spamhaus
whois-lookup
graylog-plugin
threat-analysis
otx
whois-information
-
Updated
Jul 7, 2021 - Java
-
Updated
May 26, 2021 - Java
PatrowlHears - Vulnerability Intelligence Center / Exploits
api
automation
threat
secops
cybersecurity
exploits
threat-hunting
vulnerabilities
threatintel
cve
cpe
vulnerability-detection
soc
vulnerability-identification
cvss
threat-intelligence
vulnerability-scanning
patrowl
exploits-scripts
vulnerability-intelligence
-
Updated
Jul 21, 2021 - Python
With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools
threat
cert
vulnerability
threatintel
cve
threat-analysis
threat-intelligence
vulnerability-report
vulnerability-data
vulnerability-notes
-
Updated
Jun 22, 2020
MONARC - Method for an Optimised aNAlysis of Risks by @CASES-LU
security
risk-analysis
threat
cybersecurity
cases
vulnerabilities
risk-assessment
governance
monarc
risk-evaluation
risk-treatment
-
Updated
Jul 20, 2021 - PHP
Consolidation of various resources related to Microsoft Sysmon & sample data/log
-
Updated
Mar 8, 2019 - Python
A simple threat meter for WoW Classic (1.13.2)
-
Updated
Nov 4, 2019 - Lua
Repository resource for threat hunter
-
Updated
Sep 14, 2018
A map displaying threat actors from the misp-galaxy
-
Updated
Jul 11, 2021 - TypeScript
Automated threat intelligence collection with McAfee ATD, OpenDXL and MISP
-
Updated
Feb 21, 2020 - Python
Inspect your builds to look for changes in filesystem, network traffic and running processes.
vagrant
gradle
machine
inspector
threat
vagrantfile
vagrant-virtual-machine
java-vm
suspicious-builds
inspector-monitors
-
Updated
Aug 10, 2018 - Ruby
Improve this page
Add a description, image, and links to the threat topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the threat topic, visit your repo's landing page and select "manage topics."
This feed is no longer available and the default config should be changed to disable it until it is fully removed from rita-bl.
activecm/rita-bl#10