0x706972686f / RMM-Catalogue
☆79Updated last week
Alternatives and similar repositories for RMM-Catalogue:
Users that are interested in RMM-Catalogue are comparing it to the libraries listed below
- A repository to share publicly available Velociraptor detection content☆126Updated this week
- Full of public notes and Utilities☆97Updated this week
- MISP to Sentinel integration☆62Updated 2 months ago
- MDE relies on some of the Audit settings to be enabled☆97Updated 2 years ago
- ☆55Updated last year
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆90Updated 2 weeks ago
- ☆72Updated 3 months ago
- A collection of various SIEM rules relating to malware family groups.☆65Updated 7 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆83Updated 6 months ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆75Updated 8 months ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆82Updated last week
- ☆61Updated last year
- Notes on responding to security breaches relating to Azure AD☆100Updated 2 years ago
- MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity☆88Updated 4 years ago
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated 10 months ago
- Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting☆62Updated last month
- Slides of my public talks☆54Updated last year
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆110Updated last month
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆147Updated last year
- Hunting Queries for Defender ATP☆79Updated 2 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆110Updated this week
- Repository of SentinelOne Deep Visibility queries.☆121Updated 3 years ago
- LotL RMM☆124Updated 3 weeks ago
- Pushes Sysmon Configs☆89Updated 3 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆108Updated last month
- SentinelOne STAR Rules☆55Updated this week
- An opensource sigma conversion tool built using pysigma☆115Updated last month
- Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.☆119Updated 6 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 5 months ago
- Remote access and Antivirus Logging Database☆43Updated 9 months ago