Displaying 1 to 3 from 3 results

ThreatHunter-Playbook - A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns

  •    

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Sysmon and Windows Events logs. This project will provide specific chains of events exclusively at the host level so that you can take them and develop logic to deploy queries or alerts in your preferred tool or format such as Splunk, ELK, Sigma, GrayLog etc. This repo will follow the structure of the MITRE ATT&CK framework which categorizes post-compromise adversary behavior in tactical groups. In addition, it will provide information about hunting tools/platforms developed by the infosec community for testing and enterprise-wide hunting.Can't wait to see other hunters' pull requests with awesome ideas to detect advanced patterns of behavior. The more chains of events you contribute the better this playbook will be for the community.

ttest - Perform the Student's t hypothesis test

  •    Javascript

The ttest module supports both one and two sample t-testing, and both equal and none equal variance. If one array of data is given its a one sample t-test, and if two data arrays are given its a two sample t-test.

hypothesis-regex - Hypothesis extension to allow generating strings based on regex

  •    Python

Hypothesis extension to allow generating strings based on regex. Useful in case you have some schema (e.g. JSON Schema) which already has regular expressions validating data. Regex strategy tries to go all crazy about generated data (e.g. "$" at the end of a string either does not generate anything or generate a newline). The idea is not to generate a nicely looking strings but instead any craze unexpected combination that will still match your given regex so you can prepare for those and handle them in most apropriate way.





We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.