Alternatives and similar repositories for Windows-Sandbox-Flare-VM

Users that are interested in Windows-Sandbox-Flare-VM are comparing it to the libraries listed below

• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆38Updated 9 months ago
• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆33Updated last year
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆52Updated 2 years ago
• DFIRKuiper / Hoarder
  ☆20Updated 3 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆100Updated 9 months ago
• cisagov / Ludus
  Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.
  ☆75Updated last year
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆82Updated 9 months ago
• FrankMcGovern / Hidden-Vendor-Security-Advisories
  This repo contains a list of vendors that hide their security advisories, alerts, notices, vulnerabilities, and more behind either a payw…
  ☆32Updated last year
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago
• Velocidex / SQLiteHunter
  Hunt for SQLite files used by various applications
  ☆27Updated this week
• sans-blue-team / DNS-Exfiltrate
  ☆29Updated 3 years ago
• mttaggart / venture
  Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
  ☆91Updated last year
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆86Updated 5 months ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆102Updated 5 months ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆67Updated 2 years ago
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated 3 weeks ago
• janstarke / ntdsextract2
  This aims to be a collection of tools to forensically analyze Active Directory databases
  ☆25Updated 7 months ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 7 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆116Updated 5 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆155Updated last month
• MHaggis / AppLockerGen
  AppLocker Policy Generator
  ☆25Updated 5 months ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆25Updated last year
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 3 years ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆154Updated last month
• mttaggart / wtfbins
  WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
  ☆167Updated 9 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 9 months ago
• Neo23x0 / tiny-shells
  All kinds of tiny shells
  ☆65Updated 2 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated 3 months ago