Resistor52 / DockerCrashCourse
Docker Crash Course: How to containerize your favorite security tools
☆27Updated last year
Related projects: ⓘ
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆113Updated 9 months ago
- ☆58Updated 2 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆75Updated 3 months ago
- Conference presentations☆45Updated 10 months ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆68Updated 9 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆93Updated 6 months ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆64Updated 6 months ago
- Repository of public reference frameworks for the DFIR community.☆105Updated last year
- ☆28Updated 3 years ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆122Updated last year
- Collection of scripts provided for public use☆28Updated last month
- My Jupyter Notebooks☆36Updated 5 months ago
- ☆40Updated last year
- ☆83Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- ☆21Updated last year
- Active Directory Purple Team Playbook☆103Updated last year
- ☆40Updated 3 months ago
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆64Updated 4 years ago
- Detection of obfuscated Powershell commands☆53Updated last year
- A port of BHIS's Backdoors & Breaches for playingcards.io☆59Updated last year
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆73Updated 2 years ago
- DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆35Updated 5 years ago
- Identify Azure blobs using a wordlist of account name and container name strings☆31Updated 3 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆108Updated 9 months ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆105Updated last year
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆37Updated 4 months ago
- Open Threat Hunting Framework☆100Updated last year
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- Resources for SANS CTI Summit 2021 presentation☆102Updated 10 months ago