Neo23x0 / BlueLedgerLinks
A list of my personal projects
☆178Updated 3 years ago
Alternatives and similar repositories for BlueLedger
Users that are interested in BlueLedger are comparing it to the libraries listed below
Sorting:
- Misc Threat Hunting Resources☆377Updated 3 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆255Updated 10 months ago
- Detection Ideas & Rules repository.☆178Updated 4 years ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆298Updated this week
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆214Updated 5 years ago
- ATT&CK Remote Threat Hunting Incident Response☆206Updated last year
- Atomic Purple Team Framework and Lifecycle☆301Updated 4 years ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆292Updated 4 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆117Updated 2 years ago
- Purple Teaming Attack & Hunt Lab - Terraform☆163Updated 4 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Updated 11 months ago
- Threat Hunting & Incident Investigation with Osquery☆216Updated 3 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Updated 2 years ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆142Updated last year
- Public Repo for Atomic Test Harness☆283Updated 10 months ago
- A python script developed to process Windows memory images based on triage type.☆263Updated 2 years ago
- PowerShell module for Office 365 and Azure log collection☆280Updated 4 months ago
- Build a attack range in your local machine☆131Updated 2 years ago
- OSSEM Detection Model☆184Updated 3 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆189Updated 3 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆289Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆207Updated 3 years ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆277Updated 5 years ago
- Repository of public reference frameworks for the DFIR community.☆121Updated 2 years ago
- Tools for simulating threats☆199Updated 2 years ago
- Repository of attack and defensive information for Business Email Compromise investigations☆275Updated 9 months ago
- Consolidation of various resources related to Microsoft Sysmon & sample data/log☆121Updated 4 years ago
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆74Updated 4 years ago
- Building environments to replicate small networks and deploy applications☆331Updated last month
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆342Updated 2 months ago