andrewkrug / securing-the-cloud-supplementalLinks
Supplemental templates for securing the cloud.
☆37Updated 4 months ago
Alternatives and similar repositories for securing-the-cloud-supplemental
Users that are interested in securing-the-cloud-supplemental are comparing it to the libraries listed below
Sorting:
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆134Updated 2 years ago
- ☆175Updated 2 years ago
- ☆95Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆138Updated 4 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆186Updated 3 years ago
- ☆31Updated 2 years ago
- Purple Teaming Attack & Hunt Lab - Terraform☆159Updated 3 years ago
- Creating a resource to help build and manage an Insider Threat program.☆71Updated 6 months ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆281Updated last year
- Serverless AWS application to upload and hash evidence files.☆22Updated 2 years ago
- Atomic Purple Team Framework and Lifecycle☆299Updated 4 years ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆76Updated last year
- Dorothy is a tool to test security monitoring and detection for Okta environments☆184Updated last year
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- Identify Azure blobs using a wordlist of account name and container name strings☆43Updated 4 months ago
- ☆137Updated 2 years ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆171Updated 9 months ago
- ☆23Updated 2 years ago
- Active Directory Purple Team Playbook☆110Updated 2 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated this week
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- ☆20Updated 3 years ago
- This repo is where I store my Threat Hunting ideas/content☆88Updated 2 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆208Updated 5 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Cybersecurity Incident Response Plan☆91Updated 4 years ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆118Updated 2 years ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆136Updated last year
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆72Updated last year