SecurityRiskAdvisors / VECTR
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
☆1,399Updated last week
Alternatives and similar repositories for VECTR:
Users that are interested in VECTR are comparing it to the libraries listed below
- Detect Tactics, Techniques & Combat Threats☆2,071Updated last week
- Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red…☆852Updated last month
- Bloodhound Reporting for Blue and Purple Teams☆1,129Updated 2 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,141Updated last year
- ☆2,194Updated last year
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆1,733Updated 10 months ago
- Re-play Security Events☆1,609Updated 8 months ago
- An Active Defense and EDR software to empower Blue Teams☆1,240Updated last year
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆771Updated last year
- Hunting queries and detections☆734Updated 2 months ago
- Windows Events Attack Samples☆2,260Updated last year
- A collection of red team and adversary emulation resources developed and released by MITRE.☆492Updated 3 years ago
- BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of…☆2,058Updated last year
- Purple Team Exercise Framework☆632Updated 10 months ago
- A Powershell incident response framework☆1,559Updated 2 years ago
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,061Updated this week
- Actionable analytics designed to combat threats☆972Updated 2 years ago
- Open Source Security Events Metadata (OSSEM)☆1,241Updated last year
- A framework for developing alerting and detection strategies for incident response.☆701Updated 2 years ago
- PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monit…☆775Updated last year
- TrustedSec Sysinternals Sysmon Community Guide☆1,150Updated 6 months ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,176Updated this week
- Scripts and a (future) library to improve users' interactions with the ATT&CK content☆582Updated 11 months ago
- A knowledge base of actionable Incident Response techniques☆614Updated 2 years ago
- ☆1,051Updated 5 years ago
- A collection of resources for Threat Hunters☆856Updated last month
- A set of Zeek scripts to detect ATT&CK techniques.☆570Updated 5 months ago
- An informational repo about hunting for adversaries in your IT environment.☆1,722Updated 3 years ago
- A repository of sysmon configuration modules☆2,669Updated 3 months ago