Alternatives and similar repositories for AtomicPurpleTeam:

Users that are interested in AtomicPurpleTeam are comparing it to the libraries listed below

• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆195Updated 4 years ago
• DefensiveOrigins / APT-Lab-Terraform
  Purple Teaming Attack & Hunt Lab - Terraform
  ☆158Updated 3 years ago
• DefensiveOrigins / APT06202001
  Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020
  ☆322Updated 3 years ago
• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆288Updated 3 months ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆258Updated 6 months ago
• iknowjason / PurpleCloud
  A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…
  ☆547Updated last month
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆372Updated last year
• inodee / threathunting-spl
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆269Updated last year
• splunk / attack_range_local
  Build a attack range in your local machine
  ☆130Updated last year
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆181Updated 2 years ago
• cyberdefenders / DetectionLabELK
  DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
  ☆546Updated 3 years ago
• FalconForceTeam / FalconFriday
  Hunting queries and detections
  ☆742Updated 4 months ago
• blackhillsinfosec / EventLogging
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆464Updated last month
• OTRF / Blacksmith
  Building environments to replicate small networks and deploy applications
  ☆317Updated last year
• activecm / threat-tools
  Tools for simulating threats
  ☆180Updated last year
• MalwareArchaeology / ARTHIR
  ATT&CK Remote Threat Hunting Incident Response
  ☆198Updated last month
• scythe-io / purple-team-exercise-framework
  Purple Team Exercise Framework
  ☆652Updated last year
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆128Updated 2 years ago
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆345Updated 7 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆113Updated 3 months ago
• olafhartong / ATTACKdatamap
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆350Updated 4 years ago
• Neo23x0 / BlueLedger
  A list of my personal projects
  ☆173Updated 2 years ago
• joshzelonis / attack-eval-scoring
  This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…
  ☆95Updated 4 years ago
• christophetd / Adaz
  Deploy customizable Active Directory labs in Azure - automatically.
  ☆411Updated last month
• mdecrevoisier / SIGMA-detection-rules
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆329Updated this week
• mvelazc0 / PurpleSharp
  PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monit…
  ☆785Updated last month
• guardsight / gsvsoc_cirt-playbook-battle-cards
  Cyber Incident Response Team Playbook Battle Cards
  ☆363Updated 8 months ago
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆202Updated 2 months ago
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆174Updated 2 years ago