LetsDefend / incident-response-playbooks

Related projects ⓘ

Alternatives and complementary repositories for incident-response-playbooks

• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆315Updated 2 weeks ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆82Updated last year
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆168Updated 4 months ago
• Krook9d / PurpleLab
  PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…
  ☆246Updated last month
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆186Updated 4 months ago
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆72Updated last year
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆158Updated last week
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆75Updated last week
• utilsec / QuickStart-Guides
  ☆42Updated last year
• vm32 / Digital-Forensics-Script-for-Linux
  Advanced Bash script designed for conducting digital forensics on Linux systems
  ☆130Updated 7 months ago
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆241Updated 6 months ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆174Updated last month
• CyDefOps / project-killchain
  Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…
  ☆97Updated 3 months ago
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆203Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆148Updated 6 months ago
• 0xrajneesh / Incident-Response-Projects-for-Beginners
  Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS atta…
  ☆87Updated 5 months ago
• socfortress / Playbooks
  Playbooks for SOC Analysts
  ☆144Updated last year
• LetsDefend / Blue-Team-Community
  ☆35Updated last year
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆74Updated this week
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆114Updated last year
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆110Updated 7 months ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆123Updated 2 years ago
• cyb3rmik3 / MDE-DFIR-Resources
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆356Updated 2 months ago
• utilsec / ICS_OT_Intro_Course_Resources
  ☆48Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆77Updated this week
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆148Updated last year
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 2 months ago
• Correia-jpv / fucking-awesome-incident-response
  A curated list of tools for incident response. With repository stars⭐ and forks🍴
  ☆195Updated this week