CyberMonitor / Invoke-Adversary

Related projects ⓘ

Alternatives and complementary repositories for Invoke-Adversary

• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• clong / detect-responder
  ☆76Updated 6 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago
• dstepanic / attck_empire
  Generate ATT&CK Navigator layer file from PowerShell Empire agent logs
  ☆49Updated 6 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆68Updated 5 years ago
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆250Updated last year
• rabobank-cdc / Blue-ATTACK
  The new name is DeTT&CT
  ☆24Updated 5 years ago
• olafhartong / detection-sources
  ☆53Updated 5 years ago
• Kevin-Robertson / Conveigh
  Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool
  ☆92Updated 8 years ago
• d3vzer0 / reternal-quickstart
  Repo containing docker-compose files and setup scripts without having to clone the individual reternal components
  ☆107Updated 3 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆206Updated last year
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆108Updated 6 years ago
• sisoc-tokyo / Real-timeDetectionAD_ver2
  ☆82Updated 3 years ago
• mikesiegel / ews-crack
  ☆137Updated 4 years ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆63Updated last year
• FixTheExchange / Invoke-ExchangeWebShellHunter
  PowerShell script for hunting webshells on Microsoft Exchange Servers.
  ☆54Updated 7 years ago
• cyberark / ketshash
  A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.
  ☆168Updated last year
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆107Updated 5 years ago
• jaredhaight / WindowsAttackAndDefenseLab
  ☆166Updated 4 years ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆74Updated 5 years ago
• OTRF / SimuLand
  Cloud Templates and scripts to deploy mordor environments
  ☆127Updated 3 years ago
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 3 years ago
• ztgrace / red_team_telemetry
  ☆98Updated 5 years ago
• jwillyamz / ezEmu
  See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
  ☆102Updated last year
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆84Updated last year
• TravisFSmith / mitre_attack
  ☆78Updated 4 years ago
• SecurityRiskAdvisors / RedTeamSIEM
  Repository of resources for configuring a Red Team SIEM using Elastic
  ☆98Updated 6 years ago