BushidoUK / Breach-Report-CollectionLinks
A collection of companies that disclose adversary TTPs after they have been breached
☆244Updated last year
Alternatives and similar repositories for Breach-Report-Collection
Users that are interested in Breach-Report-Collection are comparing it to the libraries listed below
Sorting:
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆96Updated last year
- Mapping of open-source detection rules and atomic tests.☆170Updated 6 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆199Updated last year
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆194Updated last year
- MISP Playbooks☆205Updated last month
- ☆110Updated 2 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆98Updated 9 months ago
- A collection of methods to learn who the owner of an IP address is.☆166Updated 2 months ago
- This is a collection of threat detection rules / rules engines that I have come across.☆293Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- Knowledge base on cybercriminal concealment techniques☆75Updated 2 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆187Updated 7 months ago
- God Mode Detection Rules☆134Updated 11 months ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- Halberd : Multi-Cloud Agentic Attack Tool☆299Updated 3 weeks ago
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆136Updated this week
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆154Updated 4 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆261Updated 4 months ago
- A starter pack of resources to help you get started in Detection Engineering.☆162Updated 3 weeks ago
- A collection of CVEs weaponized by ransomware operators☆119Updated last month
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 9 months ago
- The Threat Actor Profile Guide for CTI Analysts☆110Updated 2 years ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆267Updated this week
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆56Updated 3 weeks ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 9 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 10 months ago
- Some important DFIR Resources☆83Updated 2 years ago
- An index of publicly available and open-source threat detection rulesets.☆119Updated 3 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆172Updated 2 months ago
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆104Updated 11 months ago