Lupovis / DetectingCanaryTokensLinks
A Red Team Script to Detect Canary Tokens and Seed Files
☆14Updated last year
Alternatives and similar repositories for DetectingCanaryTokens
Users that are interested in DetectingCanaryTokens are comparing it to the libraries listed below
Sorting:
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated 2 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 4 months ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 6 months ago
- Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…☆54Updated 4 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense☆33Updated 3 weeks ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆57Updated 4 months ago
- A list of resources to build a information security team.☆13Updated 4 years ago
- A collection of tips for using MISP.☆74Updated 10 months ago
- ☆72Updated 6 months ago
- DShield Sensor Log Collection with ELK☆42Updated last month
- Slides of my public talks☆56Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆159Updated 6 months ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆103Updated last year
- A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…☆28Updated 2 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆56Updated 7 months ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆140Updated 2 years ago
- MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity☆92Updated 4 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆52Updated last year
- CarbonBlack EDR detection rules and response actions☆73Updated last year
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆51Updated 5 months ago
- ☆53Updated 3 years ago
- Threat Simulator for Enterprise Networks☆14Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆76Updated 2 weeks ago
- God Mode Detection Rules☆134Updated last year
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆121Updated 2 years ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆122Updated last month
- A list of RMMs designed to be used in automation to build alerts☆113Updated 6 months ago
- ASR Configurator, Essentials and Atomic Testing☆98Updated 6 months ago