Unfetter
A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.
Maltrail is a malicious traffic detection system that utilizes publicly available blacklists, static trails from various AV reports, and custom user-defined lists to detect malicious and suspicious activities such as domain names, URLs, IP addresses, and HTTP User-Agent header values. It also employs advanced heuristic mechanisms for discovering unknown threats.
A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.
Robust Python SDK and Command Line Client for interacting with IntelOwl's API.
Container of 200 Windows EVTX samples for testing detection scripts and training on DFIR.
Create deceptive webpages to deceive and redirect attackers away from real websites by cloning them.
A collection of YARA rules for research and hunting purposes.
Sample detection rules and dashboards for Google Security Operations