Alternatives and similar repositories for DetectingCanaryTokens

Users that are interested in DetectingCanaryTokens are comparing it to the libraries listed below

• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆60Updated 8 months ago
• cutaway-security / sawh
  Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…
  ☆55Updated 4 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated last month
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆128Updated 10 months ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆145Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆50Updated 2 weeks ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated 2 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆76Updated last year
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆115Updated 2 years ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆127Updated 2 years ago
• corelight / threat-hunting-guide
  ☆58Updated 3 years ago
• juaromu / wazuh
  ☆20Updated 4 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆50Updated 8 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆51Updated last year
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆103Updated last year
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆73Updated last year
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆71Updated 4 years ago
• Cyb3r-Monk / Cheat-Sheets
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆79Updated last week
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆105Updated 2 months ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• center-for-threat-informed-defense / defending-ot-with-attack
  Defending OT with ATT&CK provides a customized threat collection tailored to the attack surface and threat model of operational technolog…
  ☆13Updated 8 months ago
• mitre / emu
  This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
  ☆34Updated 4 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 10 months ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆73Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆124Updated 2 years ago