GitHub is home to over 50 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.
KPN Security Policy
Take an EclecticIQ outgoing feed and put indicators into Microsoft Defender ATP
Ingest Microsoft Defender ATP alerts into EclecticIQ as Incidents and Sightings
Convert Microsoft Cloud App Security events into EclecticIQ sightings
Feed parser for converting CVE information into EIQ reports
SFTP Dropzone and secure data extraction example
Write-up on the CVE-2019-9745 vulnerability.
A collection of network detection methods and rules.
A python3 library for interacting with EclecticIQ
A tool for checking if IPv4/IPv6 addresses and CIDRs belong to specific netblocks (ASes). This is particularly useful when checking if your netblocks/ASes occur in dumps/leaks (e.g. for Threat Intel purposes).
MISP JSON to EIQ JSON converter
Opleiden Trainen Oefenen (Education, Training, Exercise)
ServiceNow enricher for EclecticIQ
Toolkit to take an EclecticIQ JSON outgoing feed, extract the useful observables and transform those into IDS rulesets.
A set of commandline tools for creating and recovering Shamir Secret Shares.
European Cyber Security Perspectives
Secret Sharing - splitting and merging keys
Mattermost iOS application source code
aiki.go source code
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
Writeup of the Oracle DSR stack buffer overflow vulnerability (DRA) CVE-2014-6598
Scanner which is capable of scanning multiple hosts or multiple subnets on an SSL port and output a CSV file with the certificate details.