Securityinbits / cheatsheetLinks
These are some of the commands which I use frequently during Malware Analysis and DFIR.
☆24Updated last year
Alternatives and similar repositories for cheatsheet
Users that are interested in cheatsheet are comparing it to the libraries listed below
Sorting:
- Sharing Threat Hunting runbooks☆26Updated 5 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- ☆21Updated 3 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Azure AD Incident Response☆25Updated 3 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- Threat Mitigation Strategies☆25Updated last year
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- Cypher for Defenders: Leveraging Bloodhound Data Beyond the UI☆25Updated last year
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Jupyter notebooks☆25Updated 4 years ago
- Incident Response Report Using GitHub-Sphinx☆20Updated 5 years ago
- ☆10Updated 4 years ago
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆37Updated 3 years ago
- Windows Security Logging☆43Updated 2 years ago
- The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.☆12Updated 4 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 4 months ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- ☆11Updated 4 years ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆12Updated 6 years ago
- incident response scripts☆19Updated 6 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 3 years ago
- Build a domain with three quick PowerShell scripts!☆29Updated 5 years ago
- Incident Response Playbooks☆14Updated 6 years ago