joeavanzato / ThreatSim
Threat Simulator for Enterprise Networks
☆14Updated 2 years ago
Alternatives and similar repositories for ThreatSim:
Users that are interested in ThreatSim are comparing it to the libraries listed below
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆32Updated 2 months ago
- ASR Configurator, Essentials and Atomic Testing☆37Updated 4 months ago
- Hunt for SQLite files used by various applications☆22Updated 3 weeks ago
- This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…☆22Updated last month
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆27Updated last month
- VTC - Velociraptor Timeline Creator☆15Updated 10 months ago
- Incident Response Report Using GitHub-Sphinx☆20Updated 5 years ago
- Jupyter Univere is a search engine for all infosec jupyter notebooks☆25Updated 3 months ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆13Updated 4 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- Bloodhound Portable for Windows☆51Updated last year
- ☆72Updated 5 months ago
- ESXi Cyber Security Incident Response Script☆23Updated 6 months ago
- DNS Dashboard for hunting and identifying beaconing☆15Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- ☆11Updated 4 years ago
- A repository of Sysmon For Linux configuration modules☆15Updated 3 years ago
- Baseline a Windows System against LOLBAS☆25Updated 10 months ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Azure function to insert MISP data in to Azure Sentinel☆31Updated 2 years ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆52Updated 2 months ago
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- Hunting Queries for Defender ATP☆81Updated this week
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 8 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 3 weeks ago
- Automatically generated Sysmon parser for Azure Sentinel☆16Updated this week
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆65Updated 3 months ago