Alternatives and similar repositories for AtomicPurpleTeam:

Users that are interested in AtomicPurpleTeam are comparing it to the libraries listed below

• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆291Updated 4 months ago
• DefensiveOrigins / APT06202001
  Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020
  ☆322Updated 4 years ago
• DefensiveOrigins / APT-Lab-Terraform
  Purple Teaming Attack & Hunt Lab - Terraform
  ☆158Updated 3 years ago
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆197Updated 4 years ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆261Updated 7 months ago
• iknowjason / PurpleCloud
  A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…
  ☆551Updated 2 months ago
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆373Updated 2 years ago
• inodee / threathunting-spl
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆271Updated last year
• OTRF / Blacksmith
  Building environments to replicate small networks and deploy applications
  ☆319Updated 3 weeks ago
• splunk / attack_range_local
  Build a attack range in your local machine
  ☆130Updated last year
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆183Updated 2 years ago
• cyberdefenders / DetectionLabELK
  DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
  ☆546Updated 3 years ago
• blackhillsinfosec / EventLogging
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆465Updated 2 months ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆113Updated 3 months ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆128Updated 2 years ago
• olafhartong / ATTACKdatamap
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆350Updated 4 years ago
• christophetd / Adaz
  Deploy customizable Active Directory labs in Azure - automatically.
  ☆413Updated 2 months ago
• MalwareArchaeology / ARTHIR
  ATT&CK Remote Threat Hunting Incident Response
  ☆199Updated 2 months ago
• FalconForceTeam / FalconFriday
  Hunting queries and detections
  ☆757Updated 3 weeks ago
• Neo23x0 / BlueLedger
  A list of my personal projects
  ☆174Updated 2 years ago
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆245Updated 2 weeks ago
• joshzelonis / attack-eval-scoring
  This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…
  ☆95Updated 4 years ago
• Cyb3r-Monk / Threat-Hunting-and-Detection
  Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
  ☆705Updated last month
• polrbearproject / polrbear
  The PoLRBear Project
  ☆35Updated 3 years ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆203Updated this week
• activecm / threat-tools
  Tools for simulating threats
  ☆181Updated last year
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆146Updated last year
• scythe-io / purple-team-exercise-framework
  Purple Team Exercise Framework
  ☆675Updated last year
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆206Updated 3 months ago
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆175Updated 2 years ago