This repository implements a check on System32 executable files to detect backdoor by renamed file
-
Updated
Dec 21, 2023 - PowerShell
This repository implements a check on System32 executable files to detect backdoor by renamed file
Rex-ing indicators out of unstructured text (like an e-mail)
Triage an IP using powershell
Powershell script to query IBM Qradar SIEM and to generate KPI
Purpleteam scripts simulation & Detection - trigger events for SOC detections
A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
Security lists for SOC detections
Microsoft Sentinel SOC Operations
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Add a description, image, and links to the soc topic page so that developers can more easily learn about it.
To associate your repository with the soc topic, visit your repo's landing page and select "manage topics."