Alternatives and similar repositories for sawh

Users that are interested in sawh are comparing it to the libraries listed below

• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆71Updated 2 years ago
• cutaway-security / chaps
  Configuration Hardening Assessment PowerShell Script (CHAPS)
  ☆184Updated 3 months ago
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆73Updated 9 months ago
• humio / security_monitoring
  ☆42Updated 2 years ago
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆115Updated last year
• otoriocyber / DCOM-HardeningTool
  Powershell script for Windows to retrieve the authentication hardening status of DCOM applications
  ☆21Updated 2 years ago
• tobor88 / PowerShell-Blue-Team
  Collection of PowerShell functinos and scripts a Blue Teamer might use
  ☆84Updated last year
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• malwarejake-public / conference-presentations
  Conference presentations
  ☆47Updated last year
• cisagov / ICSNPP
  Industrial Control Systems Network Protocol Parsers
  ☆177Updated last week
• Purp1eW0lf / quickforensics
  ☆34Updated 2 years ago
• nov3mb3r / trident
  A PowerShell incident response script for quick triage
  ☆80Updated 3 years ago
• InfoSecInnovations / project-fantastic
  ☆72Updated 2 years ago
• aboutsecurity / jupyter-notebooks
  My Jupyter Notebooks
  ☆36Updated 4 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 7 months ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆122Updated 4 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆67Updated last year
• cutaway-security / cutsec_tools
  Scripts and other tools to helps parse data or gather information
  ☆66Updated 2 years ago
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆76Updated last year
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆87Updated 6 months ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆111Updated 2 years ago
• Cyb3r-Monk / Cheat-Sheets
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Updated 2 years ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 4 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆98Updated 3 years ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 3 years ago
• cisagov / ACID
  ☆72Updated 4 months ago
• center-for-threat-informed-defense / public-resources
  Collection of resources related to the Center for Threat-Informed Defense
  ☆76Updated last year
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆115Updated 3 months ago
• gmellini / Microsoft-Defender-Security-Center-Hunting-Queries
  Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…
  ☆39Updated 4 years ago