JYVSECTEC / PHR-model

Related projects: ⓘ

• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 2 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆14Updated 5 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆68Updated 5 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆107Updated 6 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago
• jaredhaight / WindowsAttackAndDefenseLab
  ☆165Updated 4 years ago
• s0lari / Hornets-Nest
  Purple Team Security
  ☆74Updated 2 years ago
• sbousseaden / Panache_Sysmon
  ☆80Updated this week
• clong / detect-responder
  ☆76Updated 6 years ago
• wadingthrulogs / Talks
  All my slides for any talks
  ☆23Updated 11 months ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆74Updated 4 years ago
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆107Updated 5 years ago
• jwillyamz / ezEmu
  See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
  ☆102Updated last year
• krakow2600 / atomic-threat-coverage
  The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
  ☆23Updated 5 years ago
• chrisjd20 / power_dump
  ☆28Updated this week
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆83Updated last year
• d3vzer0 / reternal-quickstart
  Repo containing docker-compose files and setup scripts without having to clone the individual reternal components
  ☆107Updated 3 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 2 years ago
• RESOLVN / RTHVM
  Resolvn Threat Hunting Virtual Machine
  ☆135Updated 5 years ago
• haroldogden / adb
  ☆85Updated this week
• johnfranolich / Hunting-Scripts
  A collection of hunting and blue team scripts. Mostly others, some my own.
  ☆37Updated last year
• swimlane / PSAttck
  PSAttck is a light-weight framework for the MITRE ATT&CK Framework.
  ☆38Updated 2 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 6 months ago
• dwestgard / threat_hunting_tables
  Theat hunting notes in flat file format and mapped to MITRE's ATT&CK IDs
  ☆42Updated 5 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• fullmetalcache / domainGain-dep
  Helps with finding and registering categorized domains
  ☆65Updated 3 years ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆131Updated 4 years ago
• sensepost / notruler
  The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
  ☆90Updated 6 years ago
• mvelazc0 / attack2jira
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆110Updated last year
• CyberMonitor / Invoke-Adversary
  Simulating Adversary Operations
  ☆93Updated 6 years ago