In-depth analysis of real-world attacks and threat tactics
PCAP-ATTACK is a container of PCAP captures mapped to the relevant attack tactic. It provides a comprehensive view of the attack, allowing analysts to quickly identify the tactics, techniques, and procedures (TTPs) used in the attack. This tool helps analysts to identify the attack tactics, techniques, and procedures (TTPs) used in the attack, and to map the PCAP captures to the relevant attack tactic. It is a powerful tool for incident responders and threat hunters to quickly identify and analyze the attack.
In-depth analysis of real-world attacks and threat tactics
Maltrail is a malicious traffic detection system utilizing blacklists and heuristic mechanisms.
A threat hunting tool for Windows event logs to detect APT movements and decrease the time to uncover suspicious activity.
Curated datasets for developing and testing detections in SIEM installations.
A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel
ONYPHE is a cyber defense search engine that discovers exposed assets and provides real-time monitoring to identify vulnerabilities and potential risks.