Alternatives and similar repositories for cortex-xdr-client

Users that are interested in cortex-xdr-client are comparing it to the libraries listed below

• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆176Updated 5 months ago
• chronicle / GCTI
  ☆554Updated last year
• MazX0p / ThreatHound
  ☆160Updated last year
• Securonix / AutonomousThreatSweeper
  Threat Hunting queries for various attacks
  ☆239Updated last week
• netwrix / PingCastleCloud
  Audit program for AzureAD
  ☆149Updated 2 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• NextronSystems / ransomware-simulator
  Ransomware simulator written in Golang
  ☆452Updated 3 years ago
• wietze / windows-command-line-obfuscation
  Project for identifying executables that have command-line options that can be obfuscated, possibly bypassing detection rules.
  ☆178Updated 9 months ago
• center-for-threat-informed-defense / insider-threat-ttp-kb
  The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…
  ☆146Updated 4 months ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆127Updated 3 years ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆122Updated 2 years ago
• 0dteam / Phishing-Reporter
  An Outlook Plugin to report phishing emails easier and provides full integration with GoPhish.
  ☆52Updated last year
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆97Updated this week
• joeavanzato / Trawler
  PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
  ☆320Updated 6 months ago
• CrowdStrike / OWASSRF
  ☆13Updated 2 years ago
• op7ic / EDR-Testing-Script
  Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-Cradle…
  ☆307Updated 4 years ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆280Updated 7 months ago
• jonny-jhnson / MSRPC-to-ATTACK
  A repository that maps commonly used attacks using MSRPC protocols to ATT&CK
  ☆337Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆44Updated 2 years ago
• strozfriedberg / cobaltstrike-config-extractor
  Cobalt Strike Beacon configuration extractor and parser.
  ☆157Updated last week
• lightspin-tech / lightspin-2022-top-7-attack-paths
  Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …
  ☆40Updated 3 years ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆108Updated last year
• mitre / atomic
  A MITRE Caldera plugin
  ☆48Updated last month
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆180Updated 3 years ago
• center-for-threat-informed-defense / top-attack-techniques
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆118Updated 5 months ago
• attackevals / ael
  ATT&CK Evaluations Library
  ☆81Updated 3 months ago
• SecurityRiskAdvisors / indexes
  Threat Simulation Indexes
  ☆38Updated 6 months ago
• ExabeamLabs / Content-Doc
  ☆128Updated last year
• mtth-bfft / adeleg
  Active Directory delegation management tool
  ☆367Updated 2 weeks ago
• fox-it / dissect.cobaltstrike
  Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
  ☆179Updated 4 months ago