Alternatives and similar repositories for Windows-Sandbox-Flare-VM

Users that are interested in Windows-Sandbox-Flare-VM are comparing it to the libraries listed below

• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆36Updated 8 months ago
• cisagov / Ludus
  Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.
  ☆73Updated last year
• DFIRKuiper / Hoarder
  ☆20Updated 3 years ago
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆52Updated 2 years ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆81Updated 7 months ago
• FrankMcGovern / Hidden-Vendor-Security-Advisories
  This repo contains a list of vendors that hide their security advisories, alerts, notices, vulnerabilities, and more behind either a payw…
  ☆32Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 5 months ago
• janstarke / ntdsextract2
  This aims to be a collection of tools to forensically analyze Active Directory databases
  ☆25Updated 6 months ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆99Updated 7 months ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆85Updated 4 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• mttaggart / venture
  Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
  ☆91Updated 10 months ago
• Yamato-Security / sigma-to-hayabusa-converter
  Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.
  ☆16Updated last month
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆100Updated last week
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆55Updated 2 years ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆146Updated 4 months ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆153Updated 2 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆28Updated 2 years ago
• openrelik / openrelik-deploy
  Tools and scripts to deploy and manage OpenRelik instances
  ☆14Updated 6 months ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆67Updated 2 years ago
• techspence / AppLockerInspector
  Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
  ☆127Updated 3 months ago
• haim-n / Windows-Security-Assessment
  Assess Windows OS for security misconfigurations and hardening opportunities.
  ☆35Updated last year
• akamai / Invoke-DHCPCheckup
  ☆110Updated last year
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆101Updated 3 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆113Updated 3 months ago
• stark4n6 / Arc2Lite
  A simple script to read the contents of a zip/tar/folder and extract metadata
  ☆20Updated 2 months ago