Alternatives and similar repositories for Sirius

Users that are interested in Sirius are comparing it to the libraries listed below

• DefensiveOrigins / DO-LAB
  ☆47Updated last month
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated 2 years ago
• p0w3rsh3ll / NetCease
  ☆63Updated 3 years ago
• humio / security_monitoring
  ☆41Updated 2 years ago
• OTRF / Set-AuditRule
  Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity
  ☆91Updated 3 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆133Updated 2 years ago
• mikoiv / MicrosoftSentinel-ShodanMonitor
  Ingesting Shodan Monitor Alerts to Microsoft Sentinel
  ☆34Updated last year
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆43Updated 2 months ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆70Updated 5 months ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 7 months ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆108Updated 2 years ago
• jonny-jhnson / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆147Updated last year
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated last year
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆68Updated 3 weeks ago
• maartengoet / notebooks
  Jupyter notebooks
  ☆25Updated 4 years ago
• secgroundzero / KQL_Reference_Manual
  ☆42Updated 4 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆47Updated last year
• secureworks / whiskeysamlandfriends
  GoldenSAML Attack Libraries and Framework
  ☆73Updated last year
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Updated 2 years ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆114Updated 3 months ago
• bengoerz / PurpleTeamDocs
  ☆29Updated 4 years ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆88Updated 10 months ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 2 years ago
• maartengoet / presentations
  Presentations
  ☆17Updated 2 years ago
• michaelb / simple-user-simulation
  powershell script to simulate activity by a user
  ☆21Updated 4 years ago
• reprise99 / 4688-sysmon
  ☆62Updated last year
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 3 years ago
• anthonws / WindowsDefenderATP-Hunting-Queries
  Sample queries for Advanced hunting in Windows Defender ATP
  ☆11Updated 5 years ago
• jckhmr / adlab
  ☆79Updated 5 years ago