ReconInfoSec / adversary-emulation-mapLinks
Creates an ATT&CK Navigator map of an Adversary Emulation Plan
☆17Updated 3 years ago
Alternatives and similar repositories for adversary-emulation-map
Users that are interested in adversary-emulation-map are comparing it to the libraries listed below
Sorting:
- Threat Mitigation Strategies☆25Updated last year
- BloodHound Data Scanner☆45Updated 4 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- Defensive-oriented Active Directory enumeration☆23Updated 9 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated last year
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated 2 years ago
- Bunch of honey related items that spoof/decoy powersploit functions.☆18Updated 5 years ago
- OSSEM Modular☆27Updated 4 years ago
- Git for me to put all my forensics stuff☆22Updated 4 months ago
- Repository for LNK stuff☆30Updated 2 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 3 months ago
- ☆20Updated 4 years ago
- incident response scripts☆19Updated 6 years ago
- ☆30Updated 6 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Cypher for Defenders: Leveraging Bloodhound Data Beyond the UI☆25Updated last year
- Speaking materials from conferences I've given☆9Updated 2 years ago
- Mass Triage Tools☆20Updated 3 months ago
- Accompanying PowerShell Modules for DevSec Defense Presentation☆29Updated 7 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 5 years ago
- Collection of scripts and tools that I created to aid in my testing.☆14Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago