A tool for investigating incidents involving users clicking on emails with links or attachments and opening macro-enabled word documents using Sysmon.
The 2024 Data Breach Investigations Report (DBIR) by Verizon Business provides insights into the latest trends in security incidents and breaches, offering valuable information to enhance organizational security plans. The report covers real-world cyber threats, key findings, and expert advice on cybersecurity preparedness.
A tool for investigating incidents involving users clicking on emails with links or attachments and opening macro-enabled word documents using Sysmon.
Proof-of-concept implementation of TAXII services for developers and non-developers.
A library of event-based analytics written in EQL to detect adversary behaviors, now integrated into the Detection Engine of Kibana.
Collection of YARA signatures from recent malware research.
Hippocampe is a threat feed aggregator with configurable confidence levels and a Hipposcore for determining maliciousness.
MaxMind provides accurate IP geolocation and online fraud detection solutions to create safer digital experiences.