cydea / ir-plan

Related projects ⓘ

Alternatives and complementary repositories for ir-plan

• miladaslaner / AdvHuntingCheatSheet
  Microsoft Threat Protection Advance Hunting Cheat Sheet
  ☆78Updated 4 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆111Updated 3 weeks ago
• bk-cs / rtr
  Real-time Response scripts and schema
  ☆104Updated 11 months ago
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆66Updated 8 months ago
• FirmGuardian / backdoors-and-breaches-pcio
  A port of BHIS's Backdoors & Breaches for playingcards.io
  ☆60Updated last year
• msraju / Incident-Response-Playbooks
  ☆41Updated 2 years ago
• CyberConTraining / DDTTX
  DDTTX Tabletop Trainings
  ☆28Updated 3 years ago
• Silv3rHorn / BulkStrike
  BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.
  ☆41Updated last year
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆87Updated 4 years ago
• k-bailey / detection-engineering-maturity-matrix
  ☆86Updated 2 years ago
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆191Updated 4 years ago
• SophosRapidResponse / OSQuery
  ☆80Updated last month
• MarkBaggett / 504lab
  Distribution of the SANS SEC504 Windows Cheat Sheet Lab
  ☆66Updated 4 years ago
• PwC-IR / Business-Email-Compromise-Guide
  The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…
  ☆245Updated 3 years ago
• mbabinski / InsightIDR4Py
  Allows simplified Python interaction with Rapid7's InsightIDR REST API.
  ☆23Updated 6 months ago
• PolarBearGod / CrowdStrike-RTR-Scripts
  ☆26Updated 3 years ago
• joshzelonis / attack-eval-scoring
  This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…
  ☆95Updated 4 years ago
• guardsight / gsvsoc_cirt-playbook-battle-cards
  Cyber Incident Response Team Playbook Battle Cards
  ☆360Updated 6 months ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆181Updated this week
• sfakiana / SANS-CTI-Summit-2021
  Resources for SANS CTI Summit 2021 presentation
  ☆102Updated last year
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆228Updated 2 months ago
• AustralianCyberSecurityCentre / windows_event_logging
  Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…
  ☆212Updated 2 years ago
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆118Updated 3 years ago
• Panz05 / SecurityInABox
  A Central Location For Everything You Need To Start Your Own Security Program In Your Organisation.
  ☆23Updated 5 years ago
• robvandenbrink / Critical-Controls-v7
  Implementing the CIS Critical Controls (almost) for Free
  ☆85Updated 2 years ago
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆179Updated 2 months ago
• polrbearproject / polrbear
  The PoLRBear Project
  ☆35Updated 3 years ago
• Blumira / Logmira
  Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
  ☆58Updated last month