Yamato-Security / PresentationsLinks
☆21Updated 2 months ago
Alternatives and similar repositories for Presentations
Users that are interested in Presentations are comparing it to the libraries listed below
Sorting:
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Updated 3 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 7 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆20Updated 2 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated last month
- MS Graph Commands and Tools for Blue Teamers☆52Updated 2 years ago
- ESXi Cyber Security Incident Response Script☆25Updated last year
- Slides of my public talks☆56Updated 2 years ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆66Updated 3 years ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆33Updated last year
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- VTC - Velociraptor Timeline Creator☆19Updated last year
- Detection rule validation☆40Updated 2 years ago
- Tools and scripts to deploy and manage OpenRelik instances☆16Updated 7 months ago
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated 2 years ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆60Updated 7 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆75Updated last month
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated 2 months ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆27Updated 10 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated last year
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆51Updated 9 months ago
- A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.☆16Updated 5 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆58Updated 10 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆126Updated last year
- Turn any blog into structured threat intelligence.☆51Updated this week
- A simple tool designed to create Atomic Red Team tests with ease.☆49Updated 10 months ago
- ☆11Updated 2 years ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆84Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆53Updated 2 years ago
- ☆31Updated 2 years ago
- Yara Rules for Modern Malware☆78Updated last year