Alternatives and similar repositories for cs-discovery

Users that are interested in cs-discovery are comparing it to the libraries listed below

• matthw / malware_analysis
  ☆18Updated last year
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆37Updated 5 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆23Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆49Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 3 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• SIFalcon / Detection
  ☆22Updated last year
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• 3santree / icecold
  shellcode obfuscater and runner in golang
  ☆11Updated last year
• Droogy / Malware-Study
  A collection of notes and rules (Snort/Suricata, Sigma, and YARA) to identify various samples of malware.
  ☆14Updated 3 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆40Updated last year
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated last year
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆23Updated 4 years ago
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated 2 years ago
• iomoath / web-log-analyzer
  Web access logs analyzer - provides an insight on how remote hosts behave
  ☆15Updated 3 years ago
• jbaines-r7 / hook
  Proof of Concept for WatchGuard Authenticated Arbitrary File Read (CVE-2022-31749)
  ☆10Updated 3 years ago
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆21Updated last year
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆49Updated 2 years ago
• RiccardoAncarani / talks
  ☆41Updated 2 years ago
• bjornhels / CVE-2025-30065
  PoC
  ☆12Updated 2 months ago
• JPCERTCC / CobaltStrike-Config
  Repository for archiving Cobalt Strike configuration
  ☆31Updated last week
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated last year
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆54Updated 3 years ago
• aaaddress1 / xlsGen
  (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.
  ☆43Updated 3 years ago
• jfmaes / Ansible-EmpireSuite
  ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)
  ☆24Updated 3 years ago
• fashionproof / RunHijackHunter
  ☆17Updated 4 years ago