Alternatives and similar repositories for DEFCON-KQL-KUNG-FU-22

Users that are interested in DEFCON-KQL-KUNG-FU-22 are comparing it to the libraries listed below

• improsec / 2Cloudz
  ☆25Updated 3 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆53Updated 2 years ago
• DefensiveOrigins / DO-LAB
  ☆47Updated 4 months ago
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated last year
• ManuelBerrueta / urlyzer
  urlyzer is a URL parsing analysis tool.
  ☆23Updated last year
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• Semperis / SilverSamlForger
  Silver SAML forgery tool
  ☆55Updated last year
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 3 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated 2 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 2 years ago
• microsoft / Azure-Threat-Research-Matrix
  ☆75Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆50Updated 3 years ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆26Updated 5 months ago
• Cyb3rWard0g / log4jshell-lab
  ☆70Updated last year
• joswr1ght / nmapsilent
  Convert Nmap output for integration with other Project Discovery tools
  ☆15Updated 2 years ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• RossGeerlings / PlasmaPup
  PlasmaPup is designed to help central and departmental IT personnel understand their exposures in Active Directory by showing which accou…
  ☆28Updated last year
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆26Updated 2 years ago
• elementalsouls / DumpLSASS
  ☆33Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Updated last year
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated 2 years ago
• HillsyCyberSec / CheatSheet
  ☆10Updated last year
• OverTheNet / CODE_OF_MALWARE_I
  Contains Actual Events and Codes of Threat Groups, APTs, Research Groups
  ☆19Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆45Updated 2 years ago
• antman1p / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆44Updated 9 months ago
• NVISOsecurity / nviso-cti
  ☆43Updated last month
• tothi / smbmap
  SMBMap is a handy SMB enumeration tool - here with Kerberos support
  ☆73Updated 3 years ago