center-for-threat-informed-defense / defending-iaas-with-attackLinks
Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a methodology for creating technique collections.
☆14Updated 3 weeks ago
Alternatives and similar repositories for defending-iaas-with-attack
Users that are interested in defending-iaas-with-attack are comparing it to the libraries listed below
Sorting:
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆29Updated last year
- ☆30Updated this week
- ☆45Updated 7 months ago
- This repository contains generated contextual data utilized by pyattck.☆19Updated 3 months ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- A meta-database collecting resources that compile lists of breaches☆20Updated 7 months ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated last year
- Workflows for Shuffle☆23Updated 2 years ago
- A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.☆18Updated 11 months ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- ☆41Updated 3 months ago
- Fun tools around the EBS Direct API☆18Updated 4 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- ☆12Updated 2 months ago
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆12Updated 2 weeks ago
- ☆12Updated this week
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Updated 3 years ago
- Open-source Fabric templates for cybersecurity and compliance☆20Updated 5 months ago
- ☆15Updated 3 years ago
- Sharing Threat Hunting runbooks☆26Updated 5 years ago
- GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks☆23Updated last month
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Simulates a compromise in a cloud and container environment☆32Updated 6 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated 8 months ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- Cloud threat detection visualization from excalidraw☆12Updated 3 years ago
- Cloud Security Tools☆16Updated 4 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago