DefensiveOrigins / LABPACK

Related projects ⓘ

Alternatives and complementary repositories for LABPACK

• DefensiveOrigins / APT-Lab-FastOpticsSetup
  Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform
  ☆12Updated 4 years ago
• DefensiveOrigins / APTv4_Defcon28
  Defcon 28 - Red Team Village - Applied Purple Teaming - Why Can't We Be Friends
  ☆20Updated 4 years ago
• rj-chap / BaselineTraining
  Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk
  ☆12Updated 5 years ago
• mvelazc0 / Talks-Presentations
  Resource links (video, slides & code) for my conference talks | presentations | workshops
  ☆11Updated last month
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 3 years ago
• QueenSquishy / Zombie
  General Content
  ☆20Updated 3 months ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆16Updated 3 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 9 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 2 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated last week
• Scoubi / Cypher-Workshop
  Cypher for Defenders: Leveraging Bloodhound Data Beyond the UI
  ☆25Updated 9 months ago
• ralphte / pelicap-pi
  Wireless Pentesting Device
  ☆19Updated 4 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆17Updated 3 years ago
• dhoelzer / Silky
  Web interface for monitoring and interacting with Netflow data stored in Silk repositories.
  ☆13Updated 5 years ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆25Updated 10 months ago
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• vadim-hunter / Threat-Hunters-KB
  Threat Hunter's Knowledge Base
  ☆21Updated 2 years ago
• cnotin / m365_groups_enum
  Enumerate Microsoft 365 Groups in a tenant with their metadata
  ☆52Updated 3 years ago
• trustedsec / RisingSun
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Updated 3 years ago
• Mostafayahia-hunter / Virustotal-python-API-Domains-IPs-and-URLs-
  ☆21Updated 3 years ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 4 years ago
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆25Updated last year
• mandiant / DFUR-Splunk-App
  The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.
  ☆12Updated 4 years ago
• iThreatopedia / iThreatopedia.github.io
  A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.
  ☆20Updated 2 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆18Updated 4 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆24Updated 5 years ago
• BushidoUK / Malware-Zoo
  Hashes of infamous malware
  ☆25Updated last year
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 3 years ago
• sans-blue-team / sec455-wiki
  ☆29Updated 5 years ago
• rgeoghan / app-password-persistence
  Using Microsoft 365 App Passwords for persistence
  ☆23Updated 4 years ago