joeavanzato / ThreatSim
Threat Simulator for Enterprise Networks
☆14Updated 2 years ago
Alternatives and similar repositories for ThreatSim:
Users that are interested in ThreatSim are comparing it to the libraries listed below
- ESXi Cyber Security Incident Response Script☆22Updated 4 months ago
- Hunting Queries for Defender ATP☆79Updated 2 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆75Updated last year
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆103Updated last month
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆23Updated 4 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆82Updated 5 months ago
- ☆72Updated 3 months ago
- ASR Configurator, Essentials and Atomic Testing☆36Updated 2 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆50Updated 2 weeks ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆64Updated last month
- VTC - Velociraptor Timeline Creator☆15Updated 8 months ago
- Incident Response Report Using GitHub-Sphinx☆19Updated 5 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- Defender Resource Hub☆14Updated this week
- Explore the GOAD Active Directory lab in 5 minutes with Adalanche☆36Updated 2 weeks ago
- This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…☆20Updated last month
- Bloodhound Portable for Windows☆51Updated last year
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- Project to Support The Hunter's Framework (THF)☆11Updated 9 months ago
- Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …☆30Updated 3 years ago
- Repository that contains random short projects like write-ups, PowerShell scripts, and more.☆28Updated last month
- General Content☆21Updated 6 months ago
- ☆41Updated last year
- Sigma detection rules for hunting with the threathunting-keywords project☆52Updated this week
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆25Updated 6 months ago
- ☆58Updated last year
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆26Updated 2 years ago
- This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.☆34Updated last month
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆12Updated 4 years ago