Sam0x90 / CTI
Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
☆81Updated 4 months ago
Related projects: ⓘ
- CarbonBlack EDR detection rules and response actions☆70Updated last week
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆91Updated 3 weeks ago
- Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].☆144Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆108Updated 5 months ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆21Updated 3 weeks ago
- Active C&C Detector☆148Updated 11 months ago
- ☆22Updated last year
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆23Updated 2 weeks ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆59Updated 2 months ago
- ☆34Updated 6 months ago
- Azure AD cheatsheet for the CARTP course☆94Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆92Updated 10 months ago
- A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…☆97Updated last year
- ☆21Updated this week
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- Test case indexes☆35Updated 2 months ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆40Updated 5 months ago
- ☆169Updated 7 months ago
- Completely Risky Active-Directory Simulation Hub☆99Updated 9 months ago
- ☆59Updated 3 years ago
- ☆41Updated 2 years ago
- MS Graph Commands and Tools for Blue Teamers☆47Updated 10 months ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆146Updated last year
- ☆74Updated 3 months ago
- Slides of my public talks☆46Updated 9 months ago
- M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.☆110Updated 4 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆48Updated last year
- Contains compiled binaries of Volatility☆28Updated 2 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆51Updated 2 years ago
- ☆42Updated 3 months ago