Alternatives and similar repositories for defending-iaas-with-attack

Users that are interested in defending-iaas-with-attack are comparing it to the libraries listed below

• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 4 years ago
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆29Updated 2 years ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆19Updated 4 months ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆17Updated 3 years ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Updated last year
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 8 months ago
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated last year
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆26Updated 2 years ago
• redteam-project / cyber-range-scenarios
  Training scenarios for cyber ranges
  ☆11Updated 5 years ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 4 years ago
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆21Updated 5 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆16Updated 4 years ago
• Permiso-io-tools / bucket-shield
  ☆12Updated 3 weeks ago
• invictus-ir / IOCs
  Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more
  ☆12Updated 2 weeks ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 4 years ago
• h0rv4th / c2matrix-analyzer
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆12Updated 5 years ago
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated 2 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆26Updated 6 years ago
• davidprowe / AWS_PowerTools
  AWS Powershell scripts to make management of AWS accounts easier
  ☆10Updated 5 years ago
• turbot / steampipe-plugin-virustotal
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆23Updated last month
• dirtyfilthy / siem-from-scratch
  SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab
  ☆37Updated 4 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• DarwinSec / DEFCON-KQL-KUNG-FU-22
  ☆18Updated 2 years ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• Permiso-io-tools / SkyScalpel
  ☆46Updated 8 months ago
• christophetd / aws-sso-device-code-authentication
  ☆34Updated 4 years ago