Alternatives and similar repositories for Presentations

Users that are interested in Presentations are comparing it to the libraries listed below

• Yamato-Security / sigma-to-hayabusa-converter
  Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.
  ☆13Updated 4 months ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• bittib010 / AjourVolAutolity
  A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.
  ☆16Updated 5 months ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆22Updated 9 months ago
• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆34Updated 10 months ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆27Updated last year
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 3 years ago
• Velocidex / SQLiteHunter
  Hunt for SQLite files used by various applications
  ☆26Updated 2 weeks ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• dwmetz / PSHero
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆36Updated last year
• joeavanzato / velociraptor-timeline-creator
  VTC - Velociraptor Timeline Creator
  ☆18Updated last year
• brokensound77 / LoFP
  Living off the False Positive!
  ☆37Updated 4 months ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆49Updated last year
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 2 years ago
• herosi / triage-collector
  ☆22Updated 7 months ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated this week
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated 4 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• nasbench / Eventlog_Compendium
  The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.
  ☆44Updated last month
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆52Updated 11 months ago
• SentineLabs / log4j_response
  ☆15Updated 3 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆40Updated 5 months ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• elastic / sans-dfir-2022
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Updated 4 months ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆24Updated 2 months ago