ThreatHunter-Playbook
awesome-incident-response
ThreatHunter-Playbook | awesome-incident-response | |
---|---|---|
4 | 4 | |
3,873 | 7,134 | |
1.8% | - | |
0.0 | 6.1 | |
3 months ago | about 1 month ago | |
Python | ||
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ThreatHunter-Playbook
- Threat hunting Playbooks
-
SOC Analyst Training
How fast is Jupyter in comparison? I’ve never seen it used for hunting, but apparently it’s pretty big and supported for it: https://github.com/OTRF/ThreatHunter-Playbook
- Jupyter Notebooks?
-
Cybersecurity Repositories
ThreatHunter-Playbook
awesome-incident-response
-
Cybersecurity Repositories
Incident Response
- Questions about getting into DF
-
I started a new role as a Incident Response Analyst and wanted to get some advice.
Here is a good github page that discusses tons of IR stuff. https://github.com/meirwah/awesome-incident-response
-
Has this sub done any curated reasearch collection sharing?
GitHub sounds totally viable. You might consider styling it after something like Awesome Lists. (Ex: Awesome Incident Response). But yes, totally viable.
What are some alternatives?
MonsterHunterPortable3rdHDRemake - Personal fork of a texture upscaling project for PSP's Monster Hunter Portable 3rd
Kuiper - Digital Forensics Investigation Platform
HELK - The Hunting ELK
cyberchef-recipes - A list of cyber-chef recipes and curated links
whids - Open Source EDR for Windows
dfir-orc - Forensics artefact collection tool for systems running Microsoft Windows
APTnotes - Various public documents, whitepapers and articles about APT campaigns
DevSecOps - Ultimate DevSecOps library
awesome-appsec - A curated list of resources for learning about application security
DFIRMindMaps - A repository of DFIR-related Mind Maps geared towards the visual learners!
awesome-ctf - A curated list of CTF frameworks, libraries, resources and softwares
awesome-sre - A curated list of Site Reliability and Production Engineering resources.