CrowdStrike / CASTLinks
CrowdStrike Archive Scan Tool
☆85Updated 3 years ago
Alternatives and similar repositories for CAST
Users that are interested in CAST are comparing it to the libraries listed below
Sorting:
- Tools and scripts by Arctic Wolf☆70Updated last month
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆155Updated 3 years ago
- ESXi Cyber Security Incident Response Script☆25Updated 11 months ago
- Collection of useful Canary tools☆86Updated 3 weeks ago
- ☆73Updated 10 months ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆84Updated last year
- Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…☆94Updated 5 months ago
- MDE relies on some of the Audit settings to be enabled☆98Updated 3 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆71Updated 8 months ago
- Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228☆151Updated 3 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 4 months ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 years ago
- ☆67Updated 4 years ago
- ☆42Updated 2 years ago
- ☆17Updated 3 years ago
- A GUI to query the API of abuse.ch.☆70Updated 3 years ago
- My conference presentations☆82Updated 3 weeks ago
- A collection of intelligence about Log4Shell and its exploitation activity.☆183Updated 3 years ago
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆135Updated last year
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆34Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated this week
- ☆46Updated 2 years ago
- Memory Forensic System on Cloud☆91Updated last year
- OSSEM Data Dictionaries☆62Updated 7 months ago
- ☆75Updated last year