Alternatives and similar repositories for RanSim

Users that are interested in RanSim are comparing it to the libraries listed below

• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆189Updated 10 months ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆157Updated 2 years ago
• MazX0p / ThreatHound
  ☆160Updated last year
• 0xJs / domain_audit
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆176Updated 3 months ago
• joeavanzato / Trawler
  PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
  ☆320Updated 5 months ago
• hazcod / ransomwhere
  A PoC ransomware sample to test out your ransomware response strategy.
  ☆212Updated 6 months ago
• pr0xylife / Qakbot
  ☆195Updated last year
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆256Updated last year
• JoelGMSec / PSRansom
  PowerShell Ransomware Simulator with C2 Server
  ☆490Updated last year
• CyberCX-STA / PurpleOps
  An open-source self-hosted purple team management web application.
  ☆291Updated 3 weeks ago
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆122Updated 2 years ago
• IppSec / PowerSiem
  ☆122Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆159Updated 6 months ago
• archcloudlabs / HackSpaceCon_Malware_Analysis_Course
  Free training course offered at Hack Space Con 2023
  ☆139Updated 2 years ago
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆248Updated 7 months ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆129Updated 3 years ago
• daniellowrie / update_script
  Fileless "malware" that bypasses Windows Defender using PowerShell and obfuscation
  ☆116Updated last year
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆103Updated last year
• WGU-CCDC / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆107Updated 2 years ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆107Updated last year
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆145Updated 2 months ago
• 3CORESec / MAL-CL
  MAL-CL (Malicious Command-Line)
  ☆319Updated 2 years ago
• LOLAPPS-Project / LOLAPPS
  LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.
  ☆191Updated 8 months ago
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆197Updated last week
• vectra-ai-research / MAAD-AF
  MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
  ☆405Updated last year
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆165Updated 2 years ago
• soufianetahiri / RansomwareSimulator.public
  Ransomware simulator written in C#
  ☆37Updated 3 years ago
• Gi7w0rm / MalwareConfigLists
  Just some lists of Malware Configs
  ☆172Updated 9 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆125Updated last year
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆179Updated 5 months ago