jymcheong / AutoTTPLinks
Automated Tactics Techniques & Procedures
☆255Updated 2 years ago
Alternatives and similar repositories for AutoTTP
Users that are interested in AutoTTP are comparing it to the libraries listed below
Sorting:
- Test Blue Team detections without running any attack.☆272Updated last year
- Simulating Adversary Operations☆93Updated 7 years ago
- ☆350Updated 4 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆369Updated 6 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated 2 months ago
- ☆283Updated 7 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 3 months ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- Repo containing docker-compose files and setup scripts without having to clone the individual reternal components☆109Updated 4 years ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆121Updated 6 years ago
- ☆108Updated 8 years ago
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆135Updated 6 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆202Updated 3 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆476Updated 3 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Tools for the Computer Incident Response Team☆143Updated 8 years ago
- Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…☆180Updated 3 years ago
- ☆169Updated 5 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Query and report user logons relations from MS Windows Security Events☆243Updated 6 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- PowerShell No Agent Hunting☆110Updated 7 years ago
- Detecting Lateral Movement with Machine Learning☆137Updated 7 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆237Updated 2 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 7 years ago