la3ar0v / TuxResponse
Linux Incident Response
☆90Updated 5 years ago
Alternatives and similar repositories for TuxResponse:
Users that are interested in TuxResponse are comparing it to the libraries listed below
- Picus Labs☆44Updated 4 years ago
- Simulating Adversary Operations☆93Updated 6 years ago
- Blueteam operational triage registry hunting/forensic tool.☆145Updated last year
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆85Updated 2 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- Repository of resources for configuring a Red Team SIEM using Elastic☆99Updated 6 years ago
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆111Updated last year
- Valhalla API Client☆68Updated 2 years ago
- ☆53Updated 6 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆102Updated 2 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- Active C2 IoCs☆97Updated 2 years ago
- My conference presentations☆66Updated last year
- HoneyCreds network credential injection to detect responder and other network poisoners.☆216Updated 3 years ago
- ☆78Updated 4 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆106Updated 2 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆99Updated 4 years ago
- Automagically extract forensic timeline from volatile memory dump☆128Updated 10 months ago
- ☆167Updated 5 years ago
- Repository for SPEED SIEM Use Case Framework☆53Updated 4 years ago
- ☆64Updated 3 years ago
- Startup project to create a simple to deploy honey pot style detection tool for alerting on common network attacks☆40Updated 4 years ago
- TA505+ Adversary Simulation☆65Updated 4 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆165Updated 2 years ago
- Hunt malware with Volatility☆48Updated 10 months ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 3 months ago
- Toolset for research malware and Cobalt Strike beacons☆208Updated 2 years ago