cisagov / RedEyeLinks
RedEye is a visual analytic tool supporting Red & Blue Team operations
☆2,731Updated last year
Alternatives and similar repositories for RedEye
Users that are interested in RedEye are comparing it to the libraries listed below
Sorting:
- Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows…☆2,017Updated 8 months ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,256Updated last week
- Digging Deeper....☆3,413Updated this week
- You didn't think I'd go and leave the blue team out, right?☆1,684Updated 3 weeks ago
- Automated pentest reporting with custom templates, project tracking, customer dashboard and client management tools. Streamline your secu…☆1,040Updated last month
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,397Updated last month
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆2,790Updated this week
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,204Updated last week
- Granular, Actionable Adversary Emulation for the Cloud☆2,137Updated 3 weeks ago
- Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own in…☆3,915Updated this week
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,194Updated 2 months ago
- Incident Response Methodologies 2022☆1,068Updated 4 months ago
- Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/☆1,787Updated 2 years ago
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,499Updated last year
- Elastic Security detection content for Endpoint☆1,271Updated this week
- Collaborative Incident Response platform☆1,246Updated last week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,201Updated this week
- Tools & Interesting Things for RedTeam Ops☆2,217Updated 2 months ago
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,085Updated this week
- Automating situational awareness for cloud penetration tests.☆2,174Updated last week
- Arsenal is just a quick inventory and launcher for hacking programs☆3,544Updated 9 months ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,339Updated this week
- Tools and Techniques for Blue Team / Incident Response☆3,299Updated 5 months ago
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆1,970Updated 3 months ago
- A list of cyber-chef recipes and curated links☆2,130Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,451Updated 2 years ago
- Automated Adversary Emulation Platform☆6,375Updated this week
- The Havoc Framework☆7,788Updated last month
- The Network Execution Tool☆4,619Updated this week
- Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red…☆947Updated last week