This repo contains the dataset for paper NL2KQL: From Natural Language to Kusto Query

Framework for orchestrating role-playing, autonomous AI agents. By fostering collaborative intelligence, CrewAI empowers agents to work together seamlessly, tackling complex tasks.

Repository for CoSAI workstream 2, Preparing Defenders for a Changing Cybersecurity Landscape

Build and share delightful machine learning apps, all in Python. 🌟 Star to support our work!

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

Reconnaissance Swiss Army Knife

Most advanced XSS scanner.

Incredibly fast crawler designed for OSINT.

The Network Execution Tool

Dumping DPAPI credz remotely

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

Simple python script to convert yara rules into Kusto Query Language (KQL) queries that are ready to be used in Microsoft Defender/Sentinel

Powershell Based tool for gathering information related to O365 intrusions and potential Breaches

The Ultimate Information Gathering Toolkit

A reconnaissance framework for researching and investigating Telegram.

Cyber Threat Intelligence Repository expressed in STIX 2.0

A python module for working with ATT&CK

OSINT Tools for the Dark Web

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

Tools and Techniques for Blue Team / Incident Response

Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to th…

Awesome Security lists for SOC/CERT/CTI

A collection of sources of documentation, as well as field best practices, to build/run a SOC

Jo eh.

A cross-platform programmable network tool

Threat Hunting & Incident Investigation with Osquery

A repository for using osquery for incident detection and response

Sec-Gemini v1 is a cutting-edge AI model designed to enhance cybersecurity capabilities and empower defenders in the ongoing battle against cyber threats.

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…