MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Sysmon configuration file template with default high-quality event tracing
Domain name permutation engine for detecting homograph phishing attacks,...
Suricata is a network Intrusion Detection System, Intrusion Prevention S...
A community-driven, open-source project to share detection logic, advers...
The Hunting ELK
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
A curated list of awesome YARA rules, tools, and people.
IntelOwl: manage your Threat Intelligence at scale
Security Onion is a free and open platform for threat hunting, enterpris...
Malwoverview is a first response tool used for threat hunting and offers...
Real-time HTTP Intrusion Detection
Rapidly Search and Hunt through Windows Forensic Artefacts
A repository of sysmon configuration modules
YARA signature and IOC database for my scanners and tools