iknowjason / GHOSTSPlayground
A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.
β14Updated 6 months ago
Alternatives and similar repositories for GHOSTSPlayground:
Users that are interested in GHOSTSPlayground are comparing it to the libraries listed below
- β46Updated 2 weeks ago
- π§° ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.β67Updated last month
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiastsβ¦β102Updated 9 months ago
- create a "simulated internet" cyber range environmentβ15Updated last week
- A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.β16Updated 2 months ago
- β74Updated last week
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.β22Updated 5 months ago
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to theirβ¦β24Updated 2 months ago
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeamβ25Updated 7 months ago
- Presentations from Conferencesβ26Updated 5 months ago
- β18Updated 2 years ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proacβ¦β85Updated last year
- Tools for attacking Azure Function Appsβ68Updated 3 months ago
- β24Updated 2 years ago
- Sentinel Logic Apps/Playbooks to automate enrichment, incident analysis and more.β86Updated 3 weeks ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.β50Updated last year
- MS Graph Commands and Tools for Blue Teamersβ49Updated last year
- Open Threat-Informed Detection Engineeringβ37Updated last month
- Slides of my public talksβ54Updated last year
- Elastic version of SOC prime watcher rulesβ29Updated 4 months ago
- A collection of various SIEM rules relating to malware family groups.β65Updated 7 months ago
- A simple tool designed to create Atomic Red Team tests with ease.β36Updated 2 months ago
- Security Scripts and Sources for daily usage.β52Updated this week
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Responsβ¦β51Updated 4 months ago
- Mapping of open-source detection rules and atomic tests.β123Updated 3 weeks ago
- Threat Simulation Indexesβ37Updated this week
- β99Updated last month
- β49Updated last year
- CarbonBlack EDR detection rules and response actionsβ71Updated 5 months ago
- A tool to display Windows Event logs as they happen.β12Updated last year