Alternatives and similar repositories for AtomicPurpleTeam

Users that are interested in AtomicPurpleTeam are comparing it to the libraries listed below

• DefensiveOrigins / APT06202001
  Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020
  ☆323Updated 4 years ago
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆201Updated 5 years ago
• DefensiveOrigins / APT-Lab-Terraform
  Purple Teaming Attack & Hunt Lab - Terraform
  ☆159Updated 3 years ago
• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆296Updated 8 months ago
• blackhillsinfosec / EventLogging
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆481Updated 6 months ago
• iknowjason / PurpleCloud
  A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…
  ☆575Updated 2 months ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆272Updated last month
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆373Updated 2 years ago
• christophetd / Adaz
  Deploy customizable Active Directory labs in Azure - automatically.
  ☆420Updated 6 months ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆133Updated 2 years ago
• splunk / attack_range_local
  Build a attack range in your local machine
  ☆131Updated 2 years ago
• inodee / threathunting-spl
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆276Updated last year
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆252Updated 3 weeks ago
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆185Updated 3 years ago
• MalwareArchaeology / ARTHIR
  ATT&CK Remote Threat Hunting Incident Response
  ☆200Updated 5 months ago
• CredDefense / CredDefense
  Credential and Red Teaming Defense for Windows Environments
  ☆330Updated 10 months ago
• cyberdefenders / DetectionLabELK
  DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
  ☆562Updated 3 years ago
• activecm / threat-tools
  Tools for simulating threats
  ☆185Updated last year
• PwC-IR / Business-Email-Compromise-Guide
  The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…
  ☆255Updated 4 years ago
• jsecurity101 / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆147Updated last year
• ANSSI-FR / DFIR-O365RC
  PowerShell module for Office 365 and Azure log collection
  ☆266Updated 2 months ago
• olafhartong / ATTACKdatamap
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆352Updated 4 years ago
• Neo23x0 / BlueLedger
  A list of my personal projects
  ☆177Updated 2 years ago
• OTRF / Blacksmith
  Building environments to replicate small networks and deploy applications
  ☆323Updated 4 months ago
• FalconForceTeam / FalconFriday
  Hunting queries and detections
  ☆803Updated 4 months ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆115Updated 7 months ago
• jymcheong / SysmonResources
  Consolidation of various resources related to Microsoft Sysmon & sample data/log
  ☆110Updated 3 years ago
• scythe-io / purple-team-exercise-framework
  Purple Team Exercise Framework
  ☆706Updated last year
• rootsecdev / Microsoft-Blue-Forest
  Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
  ☆264Updated 8 months ago
• JPMinty / MindMaps
  Collection of created MindMaps
  ☆150Updated last year