finackninja / CSFRTRLinks
A collection of scripts for use with CrowdStrike Falcon RTR
☆17Updated 9 months ago
Alternatives and similar repositories for CSFRTR
Users that are interested in CSFRTR are comparing it to the libraries listed below
Sorting:
- Conference presentations☆47Updated last year
- ☆76Updated last year
- InsightVM helpful SQL queries☆69Updated 5 months ago
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆148Updated last month
- MAES: M365 Analyzer & Extractor Suite Po☆25Updated last week
- Tools for simulating threats☆190Updated last year
- Repository of attack and defensive information for Business Email Compromise investigations☆259Updated 2 months ago
- Unleash the power of the Falcon Platform at the CLI☆121Updated 3 weeks ago
- ☆73Updated 9 months ago
- ☆101Updated 3 weeks ago
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆144Updated last month
- ☆86Updated 4 months ago
- MISP to Sentinel integration☆69Updated last week
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆154Updated 3 months ago
- A collection of various SIEM rules relating to malware family groups.☆67Updated last year
- Repository of SentinelOne Deep Visibility queries.☆129Updated 4 years ago
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆302Updated this week
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆260Updated 4 years ago
- VirtualGHOST Detection Tool☆92Updated last year
- Security Scripts and Sources for daily usage.☆64Updated last month
- Backdoors & Breaches: Campaigns. These are short guides to help Incident Captains by giving them game ideas based on actual breaches.☆35Updated last year
- LotL RMM☆221Updated last week
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)