H3llKa1ser / SOC-Assistant-GuideLinks
A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.
☆21Updated this week
Alternatives and similar repositories for SOC-Assistant-Guide
Users that are interested in SOC-Assistant-Guide are comparing it to the libraries listed below
Sorting:
- ☆193Updated last year
- Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IO…☆91Updated 6 months ago
- Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS atta…☆241Updated last year
- SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incide…☆120Updated 11 months ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆724Updated 6 months ago
- ☆220Updated last year
- ☆16Updated last year
- CLI tools for forensic investigation of Windows artifacts☆349Updated 6 months ago
- Playbooks for SOC Analysts☆670Updated 3 years ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆455Updated 3 months ago
- Hands-on projects on Static and Dynamic malware analysis with real-world tools.☆125Updated last year
- A powerful and user-friendly browser extension that streamlines investigations for security professionals.☆415Updated 8 months ago
- Comprehensive SOC Analyst notes covering incident response, threat hunting, SOC workflows, and cybersecurity concepts—perfect for exam pr…☆104Updated 3 months ago
- A Python script for extracting IP addresses, URLs, headers, and attachments from .eml files. Additional functionalities include defanging…☆42Updated last year
- A powerful home-lab focused on setting up Splunk SIEM and real-world use cases. If you’re interested to become SOC Analyst(Tier 1/2) , th…☆95Updated last year
- Open Source Security Operations Center Documentation☆207Updated 7 months ago
- ☆29Updated last year
- Security Operations Chef☆56Updated 3 weeks ago
- Hands-on projects for beginners to learn and practice Windows forensics and essential cybersecurity skills☆181Updated last year
- An automated NMAP python script☆48Updated 11 months ago
- ☆59Updated 3 months ago
- Describing and documenting the process of deploying a HomeLab for security research and training☆41Updated 9 months ago
- Hands-on projects for beginners to learn and practice Active Directory monitoring using various tools.☆139Updated last year
- CTF styled Digital Forensics labs, as offered in FAST NUCES Karachi during Spring 2023.☆320Updated 2 years ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆420Updated 6 months ago
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆111Updated last year
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆109Updated 9 months ago
- ThreatSeeker: Threat Hunting via Windows Event Logs☆124Updated 2 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆106Updated 3 years ago
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆458Updated last year