[Tools][DFIR] SecurityRiskAdvisors/TALR

2024-12-11 09:04:25 -05:00 · 2018-12-13 14:43:15 +07:00 · 2018-12-13 14:43:15 +07:00 · 70ea107e23
commit 70ea107e23
parent d569aaa4e3
1 changed files with 5 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -1316,9 +1316,13 @@ _return-to-libc techniques_
        <td>Open Source HIDS SECurity</td>
    </tr>
    <tr>
-        <td><a href="https://github.com/ptresearch/AttackDetection">ptresearch/AttackDetection</a>
+        <td><a href="https://github.com/ptresearch/AttackDetection">ptresearch/AttackDetection</a></td>
        <td>The Attack Detection Team searches for new vulnerabilities and 0-days, reproduces it and creates PoC exploits to understand how these security flaws work and how related attacks can be detected on the network layer. Additionally, we are interested in malware and hackers’ TTPs, so we develop Suricata rules for detecting all sorts of such activities.</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/SecurityRiskAdvisors/TALR">SecurityRiskAdvisors/TALR</a></td>
+        <td>Threat Alert Logic Repository (TALR) - A public repository for the collection and sharing of detection rules in platform agnostic formats. Collected rules are appended with STIX required fields for simplified sharing over TAXII servers.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/refractionPOINT/limacharlie">refractionPOINT/limacharlie</a></td>
        <td>LC is an Open Source, cross-platform (Windows, MacOS, Linux ++), realtime Endpoint Detection and Response sensor. The extra-light sensor, once installed on a system provides Flight Data Recorder type information (telemetry on all aspects of the system like processes, DNS, network IO, file IO etc).</td>