An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.

Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch jimi has developed into a fully fledged IT automation platform which effortlessly integrates with your existing tools unlocking the potential for autonomous IT and Security operations.

Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.

Build AI-powered security tools. 50+ hands-on labs covering ML, LLMs, RAG, threat detection, DFIR, and red teaming. Includes Colab notebooks, Docker environment, and CTF challenges.

「🛡️」AVs/EDRs Evasion tool

A python-based API client for Cortex XDR API.

A few XDR Scripts

custom Python script to perform Yara matching in Cortex XDR

Analysis-oriented command line tool for remote execution and triage via EDRs API

Python module for XDR (IETF RFC1014 / RFC1832 / RFC4506) encoding and decoding

Yet another SoC Lab

A forked version of xdrlib, a module for encoding and decoding XDR (External Data Representation) data in Python.

Simple Python script to convert, enrich and upload an EVTX file to Palo Alto Networks Cortex XDR using an HTTP Custom Collector.

Command line tool to unpack Stellar's history xdr files

Generate WAF rules and exposing multiple scenarios

Generate RPC modules

One Gateway. 15 platforms. Zero silos. MIGA consolidates Cisco AI/ML telemetry into a unified MCP server cluster with dynamic AGNTCY discovery, cross-platform root cause analysis, predictive failure detection, and a conversational WebEx Bot that turns natural language into action.

Python xdr parser