LogRhythm-Labs/sunburst_iocs LogRhythm-Labs/sunburst_iocs

  • Stars
    star
    1
  • Language
  • Created almost 4 years ago
  • Updated almost 4 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
LogRhythm-Labs/sunburst_iocs
github

LogRhythm-Labs

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

List of IOCs from CISA STIX feed related to Alert AA20-352A

More Repositories

1

PIE

πŸ“« The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
PowerShell
178
star
2

Sigma

Convert Sigma rules to LogRhythm searches
19
star
3

VirusTotal

πŸ› VirusTotal SIEM Integration and Automation
PowerShell
18
star
4

Carbon-Black-SmartResponse

πŸ’₯ Carbon Black SIEM Integration and Automation for LogRhythm
PowerShell
15
star
5

Endpoint-Lockdown

πŸ”’ Isolate a host from the network using PowerShell
PowerShell
9
star
6

Extract-Remote-File-SmartResponse

PowerShell Script / SmartResponse to extract files from remote Windows hosts
PowerShell
9
star
7

Invoke-Okta

πŸŒ€ Okta + LogRhythm SIEM = Integration and Automation
PowerShell
8
star
8

System-Monitor-Agent-Maintenance

Utilize PowerShell remoting to perform automated SCSM agent maintenance
PowerShell
5
star
9

PIE-Button

πŸ”˜ Phishing Intelligence Engine Microsoft Outlook Add-In
C#
5
star
10

Playbooks_CaseAPI

Playbook manipulation via API
PowerShell
4
star
11

SRP-DisableLocalWindowsAccount

Disables an account on a local Windows system
PowerShell
4
star
12

SRP-Fortinet

SmartResponse plugin to add IPs and FQDNs to an Address Group.
PowerShell
3
star
13

SRP-VirusTotal

"On-demand" VirusTotal file/URL scanning via the LogRhythm Web Console
C#
3
star
14

SRP-KillWindowsProcess

SmartResponse plugin to terminate a process on a Windows host.
PowerShell
2
star
15

ATTACK_STIX_analysis

A collection of scripts for analysis of the MITRE ATT&CK framework via STIX/TAXII
Jupyter Notebook
2
star
16

FireEye_breach_artifacts

extracted IOCs and MITRE technique analysis from the December 2020 FireEye breach
2
star
17

SRP-Nmap

Nmap SIEM Integration and Automation for LogRhythm
Lua
2
star
18

purple_team_cases

Create purple team master Case and per-MITRE-technique Cases for purple team exercise
Jupyter Notebook
1
star
19

log4Shell

LogRhythm resources for log4Shell detection.
1
star
20

Twilio-SMS-SmartResponse

☎️ SMS Messaging PowerShell Script Using Twilio
PowerShell
1
star
21

SRP-CiscoISE

SmartResponse plugin to quarantine a host via Cisco ISE
PowerShell
1
star
22

SRP-AddItemToList

Add an item to a text file to be consumed by the LogRhythm Job Manager
PowerShell
1
star
23

LR-attack-navigator-layer

MITRE ATT&CK Navigator layer displaying technique coverage in the MITRE ATT&CK KB Module
1
star