Alternatives and similar repositories for PowerShell-Honeyport

Users that are interested in PowerShell-Honeyport are comparing it to the libraries listed below

• humio / security_monitoring
  ☆41Updated 2 years ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆20Updated last year
• DefensiveOrigins / DO-LAB
  ☆47Updated 2 months ago
• nrrpinto / inquisitor
  Forensics artifacts collection
  ☆20Updated 4 years ago
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated last year
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆68Updated last month
• nov3mb3r / trident
  A PowerShell incident response script for quick triage
  ☆80Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆88Updated 2 years ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆23Updated 9 months ago
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆43Updated 3 months ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆27Updated last year
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆58Updated 10 years ago
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated 2 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆34Updated last year
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 3 years ago
• rj-chap / ransomware_tips
  Random tips and tricks RE: ransomware
  ☆14Updated 3 years ago
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆41Updated 4 months ago
• CrowdStrike / xwf-yara-scanner
  ☆87Updated last year
• mr-r3b00t / OSCP
  ☆15Updated 6 years ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 3 years ago
• svch0stz / velociraptor-detections
  ☆22Updated 2 years ago
• SigmaHQ / pySigma-backend-crowdstrike
  SigmaHQ pySigma CrowdStrike processing pipeline
  ☆26Updated 8 months ago
• joswr1ght / s3logparse
  Simple parser to get useful information from AWS S3 logs
  ☆26Updated 3 years ago
• bengoerz / PurpleTeamDocs
  ☆29Updated 4 years ago
• dagonis / obscureV4
  Let's obscure some IPv4 addresses
  ☆36Updated 2 years ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆82Updated last year
• ValcanK / HomeLab
  ☆20Updated 4 years ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 4 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆69Updated 3 weeks ago