0x4D31 / honeybits-winLinks
Windows version of honeybits - a PoC tool to create breadcrumbs and honeytokens, to lead the attackers to your honeypots!
☆24Updated 8 years ago
Alternatives and similar repositories for honeybits-win
Users that are interested in honeybits-win are comparing it to the libraries listed below
Sorting:
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆73Updated 3 years ago
- Simulating Adversary Operations☆96Updated 7 years ago
- ☆76Updated 7 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- Repository of resources for configuring a Red Team SIEM using Elastic☆101Updated 7 years ago
- THOR MITRE ATT&CK Framework Coverage☆25Updated 5 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆42Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago
- ☆35Updated 4 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆78Updated 3 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Site for IWS book content☆17Updated 6 years ago
- Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC☆61Updated 3 years ago
- Repo containing docker-compose files and setup scripts without having to clone the individual reternal components☆111Updated 4 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- ☆30Updated 6 years ago
- ☆53Updated 7 years ago
- Repository of yara rules☆60Updated 2 years ago
- ☆77Updated 6 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated last month
- The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.☆94Updated 7 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆55Updated 7 years ago
- Open platform for modelling, collection and exchange of knowledge☆162Updated 3 months ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- PowerShell No Agent Hunting☆109Updated 7 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆113Updated 2 years ago
- Tools for the Computer Incident Response Team☆144Updated 8 years ago