AbuseHelper
AbuseHelper is an open-source framework for receiving and redistributing abuse feeds and threat intel.
These rules are provided freely to the community without warranty. In this GitHub repository you will find rules in multiple languages: Snort Yara ClamAV HXIOC The rules are categorized and labeled into two release states: Production: rules that are expected to perform with minimal tuning. Supplemental: rules that are known to require further environment-specific tuning and tweaking to perform, and are often used for hunting workflows. Please check back to this GitHub for updates to these rules. FireEye customers can refer to the FireEye Community (community.fireeye.com) for information on how FireEye products detect these threats. The entire risk as to quality and performance of these rules is with the users.
AbuseHelper is an open-source framework for receiving and redistributing abuse feeds and threat intel.
Collection of YARA signatures from recent malware research.
A free and open-source OSINT framework for gathering and analyzing data from various sources
msticpy is a library for InfoSec investigation and hunting in Jupyter Notebooks with extensive functionality for log data analysis, threat intelligence enrichment, and visualization.
Create deceptive webpages to deceive and redirect attackers away from real websites by cloning them.
A library of adversary emulation plans to evaluate defensive capabilities against real-world threats.