Ebryx / aws-threathunting
Projects for AWS ThreatHunting
☆21Updated 3 years ago
Related projects: ⓘ
- TA505+ Adversary Simulation☆64Updated 3 years ago
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆23Updated 5 years ago
- ☆76Updated 6 years ago
- Supporting material for my presentation "Adversarial Threat Modelling — A Practical Approach to Purple Teaming in the Enterprise"☆50Updated 2 years ago
- ☆28Updated this week
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆48Updated 5 years ago
- A companion tool for BloodHound offering Active Directory statistics and number crunching☆63Updated 6 years ago
- Terraform script to deploy AD-based environment on Azure☆41Updated last year
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 2 years ago
- HoneyPot Orchestration☆8Updated last year
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 5 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆99Updated 4 years ago
- Send your nessus compliance and vulnerability scan data to ElasticSearch☆27Updated 6 years ago
- Repository for my ATT&CK analysis research.☆68Updated 5 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Updated 3 years ago
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆22Updated 2 months ago
- 504 VSAgent☆22Updated 6 years ago
- A repo to document API functions mapped to security events across diverse platforms☆74Updated 4 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 2 years ago
- Three datasets to practice Threat Hunting against.☆36Updated 8 months ago
- ☆26Updated 2 years ago
- Carbon Black Response IR tool☆53Updated 3 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆37Updated last year
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆102Updated last year
- ☆19Updated 3 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆76Updated 2 years ago
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…☆9Updated 3 years ago
- PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.☆56Updated 2 years ago
- Mitre Att&ck Technique Emulation☆82Updated 5 years ago
- Site for IWS book content☆18Updated 5 years ago