Alternatives and similar repositories for CAST:

Users that are interested in CAST are comparing it to the libraries listed below

• rtkwlf / wolf-tools
  Tools and scripts by Arctic Wolf
  ☆68Updated 8 months ago
• CrowdStrike / Falcon-Toolkit
  Unleash the power of the Falcon Platform at the CLI
  ☆113Updated last week
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆67Updated 10 months ago
• fragtastic / cis-benchmark-converter
  Converts text dumps from CIS Benchmark PDFs to CSV & Excel formats.
  ☆56Updated 6 months ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆64Updated last month
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆39Updated last year
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆259Updated 2 years ago
• netwrix / PingCastleCloud
  Audit program for AzureAD
  ☆145Updated last year
• tobor88 / PowerShell-Blue-Team
  Collection of PowerShell functinos and scripts a Blue Teamer might use
  ☆83Updated last year
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated 2 years ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆52Updated last year
• Neo23x0 / Talks
  Slides of my public talks
  ☆48Updated last year
• soteria-security / ADInspect
  A PowerShell script that automates the security assessment of Microsoft Active Directory environments.
  ☆63Updated 2 years ago
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆36Updated 2 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆39Updated 4 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆68Updated last year
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆62Updated last month
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆70Updated 2 months ago
• Bert-JanP / Sentinel-Automation
  Sentinel Logic Apps/Playbooks to automate enrichment, incident analysis and more.
  ☆78Updated 5 months ago
• lawndoc / AdvancedHuntingQueries
  Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
  ☆115Updated 5 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• csandker / Azure-AccessPermissions
  ☆106Updated last year
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆90Updated 3 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆94Updated last month
• Bert-JanP / SecScripts
  Security Scripts and Sources for daily usage.
  ☆51Updated this week