Alternatives and similar repositories for FLARE-VM-configs

Users that are interested in FLARE-VM-configs are comparing it to the libraries listed below

• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆44Updated 3 months ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆33Updated last month
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• strozfriedberg / qelp
  Quick ESXi Log Parser
  ☆21Updated 5 months ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated last month
• WesSec / VelociDeploy-o-Matic
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Updated 2 years ago
• openrelik / openrelik-deploy
  Tools and scripts to deploy and manage OpenRelik instances
  ☆14Updated 2 weeks ago
• MazX0p / CobaltSentry
  ☆24Updated 4 months ago
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆37Updated last year
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆25Updated 3 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆36Updated 4 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated last year
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆49Updated 5 months ago
• FarghlyMal / Config-Extractors
  ☆27Updated 7 months ago
• bornpresident / Volatility-MCP-Server
  A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude
  ☆16Updated 2 months ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆27Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆14Updated last year
• cocopollo / HunterM
  macOS Artifacts
  ☆30Updated 3 months ago
• infosecn1nja / Invoke-AtomicAssessment
  Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.
  ☆41Updated 5 months ago
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated 6 months ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• Atomics-on-A-Friday / Emulation-Tools
  ☆32Updated 2 years ago
• N0vaSky / NovaEDR-deploy
  ☆73Updated last week
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆80Updated 9 months ago