Cyb3r-Monk / Cheat-Sheets

Related projects ⓘ

Alternatives and complementary repositories for Cheat-Sheets

• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆40Updated 4 years ago
• svch0stz / velociraptor-detections
  ☆19Updated last year
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆47Updated last week
• AtomicGaryBusey / AzureForensics
  ☆29Updated 3 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆37Updated 6 months ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆58Updated 2 years ago
• secnnet / CrowdStrike-Falcon-Search-Queries
  ☆16Updated last year
• DefensiveOrigins / DO-LAB
  ☆43Updated 3 weeks ago
• bengoerz / PurpleTeamDocs
  ☆28Updated 3 years ago
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆56Updated 3 weeks ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆17Updated last year
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆70Updated 2 weeks ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆85Updated last year
• RoqueNight / DefenderATP-Proactive-Threat-Hunting-Queries-KQL
  List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…
  ☆23Updated 3 years ago
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆34Updated 3 weeks ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆52Updated 4 years ago
• rj-chap / BaselineTraining
  Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk
  ☆12Updated 5 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 2 years ago
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆49Updated 3 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆82Updated 2 months ago
• vadim-hunter / Threat-Hunters-KB
  Threat Hunter's Knowledge Base
  ☆21Updated 2 years ago
• edelucia / rules
  Cyber Threats Detection Rules
  ☆13Updated last month
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆87Updated 4 years ago
• DFIRKuiper / Hoarder
  ☆16Updated 2 years ago
• Dead-Simple-Scripts / AutoLLR
  Script to automate Linux live evidence collection
  ☆27Updated 2 years ago
• threat-hunting / awesome-threat-detection
  A curated list of awesome threat detection and hunting resources
  ☆16Updated 6 years ago
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆35Updated 11 months ago