Spyre
A simple, self-contained modular host-based IOC scanner for incident responders.
A collection of tools and resources for threat hunters. Sections: - Hunting Tools: Open source tools for hunting like Velociraptor, osquery, GRR, ELK, Sysmon, and more. - Resources: Useful resources to get started in Threat Hunting. - Hunting with AI: Leveraging ChatGPT prompts for Threat Hunting. - Must Read: Articles and blog posts covering different aspects of Threat Hunting. - Custom Scripts: Tools and scripts to support different types of hunts.
A simple, self-contained modular host-based IOC scanner for incident responders.
A tool to extract indicators of compromise from security reports in PDF format.
Repository of APT-related documents and notes sorted by year.
Utilize Jupyter Notebooks to enhance threat hunting capabilities by focusing on different threat categories or stages.
A tool for investigating incidents involving users clicking on emails with links or attachments and opening macro-enabled word documents using Sysmon.
A cybersecurity concept categorizing indicators of compromise based on their level of difficulty for threat actors to change.