AugmentedSecurityForce / -HOW-TO-Create_a_SOC_LABLinks
Create a SOC lab with SIEM, AD, Workstation, Firewall, Sysmon, IPS. Step by Step
☆30Updated 2 years ago
Alternatives and similar repositories for -HOW-TO-Create_a_SOC_LAB
Users that are interested in -HOW-TO-Create_a_SOC_LAB are comparing it to the libraries listed below
Sorting:
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆104Updated 11 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆187Updated 7 months ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆162Updated 8 months ago
- Repository resource for threat hunter☆158Updated 6 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆154Updated 4 months ago
- SIEM Cheat Sheet☆75Updated last year
- ThreatSeeker: Threat Hunting via Windows Event Logs☆122Updated 2 years ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- A collection of various SIEM rules relating to malware family groups.☆67Updated last year
- A list of resources to build a information security team.☆13Updated 4 years ago
- ☆74Updated last month
- Completely Risky Active-Directory Simulation Hub☆103Updated last year
- A runbook for handling security incidents in cooperation with 0xsyr0☆51Updated 2 years ago
- Useful resources about phishing email analysis☆84Updated 6 months ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated last year
- Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.☆165Updated last month
- An offline Phishing Email Analyzer. Enabling non-techies to analyze phishing emails automatically!☆64Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆77Updated 3 months ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆118Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆105Updated 2 years ago
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆154Updated 2 years ago
- Some important DFIR Resources☆83Updated 2 years ago
- Ransomware simulation script written in PowerShell. Useful for testing your defenses and backups against real ransomware-like activity in…☆227Updated 10 months ago
- ☆34Updated 2 years ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆134Updated 2 years ago
- VirtualGHOST Detection Tool☆92Updated last year
- Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them☆28Updated last year
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆195Updated last year
- MISP Playbooks☆207Updated 2 months ago