cabby

0 (0)

A simple Python library for interacting with TAXII servers. Docker To run cabby using docker, execute the following: docker run --rm eclecticiq/cabby taxii-discovery --path https://test.taxiistand.com/read-only/services/discovery Feedback You are encouraged to provide feedback by commenting on open issues or sending us email at cabby@eclecticiq.com

Threat Management

Free

taxii docker

ALTERNATIVES

Spyre

0 (0)

A simple, self-contained modular host-based IOC scanner for incident responders.

Threat Management

Free

ioc scanner incident-response yara

The Threat Hunter Playbook

0 (0)

A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.

Threat Management

Free

attack-paths blue-team cybersecurity infosec threat-hunting mitre-attack

Sysmon Learning Resources

0 (0)

A curated list of resources for learning about deploying, managing, and hunting with Microsoft Sysmon.

Threat Management

Free

sysmon sysinternals

PSHunt

0 (0)

Powershell Threat Hunting Module for scanning remote endpoints and collecting comprehensive information.

Threat Management

Free

dfir hunting powershell endpoint-security threat-hunting

RedHunt Linux Distribution (VM) v2

0 (0)

A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.

Threat Management

Free

osint red-team security-testing threat-intelligence incident-response threat-hunting

Combine

0 (0)

Gathers Threat Intelligence Feeds from publicly available sources and provides detailed output in CSV format.

Threat Management

Free

threat-intelligence open-source-intelligence intelligence-gathering threat-feed csv-output