BlackPerl-DFIR / IR-CheatsheetsView external linksLinks
This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team
☆20Oct 9, 2024Updated last year
Alternatives and similar repositories for IR-Cheatsheets
Users that are interested in IR-Cheatsheets are comparing it to the libraries listed below
Sorting:
- This Repository gives the best and possible strategies against hunting the ransomware☆26Aug 23, 2022Updated 3 years ago
- reverse engineered and improved BSQLi script from Coffinxp☆15Aug 30, 2024Updated last year
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Jul 7, 2025Updated 7 months ago
- ☆16Updated this week
- CrlfiX☆21Jan 30, 2025Updated last year
- This is a CS project that will encrypt shell code from msfvenom using AES☆23Mar 24, 2022Updated 3 years ago
- Sharing Threat Hunting runbooks☆25Jul 5, 2019Updated 6 years ago
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 7 months ago
- A summary of the most abbreviations I encountered so far☆28Jan 18, 2026Updated 3 weeks ago
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- A collection of reports and case studies to understand the threat landscape for UK critical infrastructure☆40Jan 23, 2024Updated 2 years ago
- Comprehensive SOC Analyst notes covering incident response, threat hunting, SOC workflows, and cybersecurity concepts—perfect for exam pr…☆107Nov 10, 2025Updated 3 months ago
- yara detection rules for hunting with the threathunting-keywords project☆157May 11, 2025Updated 9 months ago
- ☆11Feb 28, 2022Updated 3 years ago
- IOCs collected during day-to-day activities☆106Updated this week
- A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights…☆38Oct 17, 2024Updated last year
- Phishing Framework for OTP codes☆47Nov 24, 2025Updated 2 months ago
- k8s ConfigMaps and Secrets Usage.☆11Jan 24, 2025Updated last year
- Docker container for running CobaltStrike 4.10☆38Sep 18, 2024Updated last year
- Malware detonation platform Polygon integration☆10Aug 1, 2023Updated 2 years ago
- ☆25Jan 19, 2026Updated 3 weeks ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- ☆11Mar 12, 2020Updated 5 years ago
- ☆11Nov 11, 2023Updated 2 years ago
- The OWASP Testing Guide v4.2 Checlist [2023]☆13Jan 15, 2023Updated 3 years ago
- Python script to create CSV, HTML & PDF filtered for repo tags☆13Jul 26, 2024Updated last year
- ☆13Mar 12, 2025Updated 11 months ago
- Master-in-Devops-Engineering-MDE-Session-Notes☆13Jul 28, 2025Updated 6 months ago
- You'll find all the resources and presentations I have used in my talks and workshops☆12Nov 16, 2024Updated last year
- Port Invaders is an arcade-style educational game designed to help you learn and memorize common networking port numbers. Whether you're …☆17Sep 4, 2023Updated 2 years ago
- HOCig- Automatic HOC Information Gathering Tool V 1.2☆10May 4, 2021Updated 4 years ago
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 2 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆194Dec 22, 2025Updated last month
- Library of threat hunts to get any user started!☆48Sep 4, 2020Updated 5 years ago
- Initial triage of Windows Event logs☆106Jun 16, 2024Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆192Dec 20, 2024Updated last year
- A collection of scripts designed to secure/harden Linux based distributions☆12Nov 2, 2025Updated 3 months ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆19May 9, 2025Updated 9 months ago