atomic-threat-coverage
atomic-threat-coverage copied to clipboard
atc-project
Actionable analytics designed to combat threats
This is a dirty hack to fix the issue: https://github.com/atc-project/atomic-threat-coverage/issues/233 I am sure there are better ways to do this
Hello Everyone, I've noticed the following two code Fragments: `if not date_modified:` at line 157 https://github.com/atc-project/atomic-threat-coverage/blob/master/scripts/es_index_export.py#L157 `if not date_created:` at line 136 https://github.com/atc-project/atomic-threat-coverage/blob/master/scripts/es_index_export.py#L136 My python skills are negligable, but I...
Fixes https://github.com/atc-project/atomic-threat-coverage/issues/228#issue-1037772716 try/except block around DN keys append
Script for exporting Elastic index, atomic-threat-coverage/scripts/es-index-export.py breaks when executing Makefile because some data/atc/data_needed/DN_### files are missing required keys, e.g. 'provider:'. ``` error line 258 in __init__: if dn['provider'] not in...
I like the dynamic way how a detection rule is able to declare the data needed part. This change will extend the list of DN for a customer depending on...
Hi all, I have seen an interesting [discussion about RP usage](https://github.com/atc-project/atomic-threat-coverage/issues/173#issuecomment-606992118). I would like to talk about your and my use cases for response playbooks. In my ATC installation, RPs...
Framework for normalizing logs. https://github.com/Cyb3rWard0g/OSSEM
## Problem Our readme is huge, hard to read, hard to understand. There are no informational pages for our entities (like Response Actions), rather than those short descriptions from README....
Metadata
Owner
Metadata
Actionable analytics designed to combat threats