lockfale / Malicious_Containers_Workshop

Related projects ⓘ

Alternatives and complementary repositories for Malicious_Containers_Workshop

• eremit4 / Akamaru
  Sniffing out well-known threat groups
  ☆28Updated 2 months ago
• cyberbuff / TheAtomicPlaybook
  The Atomic Playbook contains TTPs from the MITRE ATT&CK framework mapped to the tests in the Atomic Red Team. It serves as a single resou…
  ☆29Updated 9 months ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆102Updated last year
• DarwinSec / DEFCON-KQL-KUNG-FU-22
  ☆18Updated 2 years ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆48Updated 9 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆23Updated last year
• CyberSecurityUP / EDR-Assessment
  This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…
  ☆46Updated 3 weeks ago
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆56Updated 3 weeks ago
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆101Updated 2 years ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆58Updated 4 months ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆62Updated 9 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 5 months ago
• wand3rlust / Hitchhikers-Guide-to-URL-Analysis
  Collection of Tools & Techniques for analyzing URLs
  ☆30Updated last year
• mitre / training
  A CALDERA plugin
  ☆25Updated 3 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆35Updated last month
• mitre / emu
  This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
  ☆29Updated 8 months ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 6 months ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆51Updated this week
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆44Updated last week
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆60Updated 3 months ago
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated last year
• samiul008ghub / SIEM_SETUP_ELASTIC
  ☆15Updated last year
• phretor / infosec-opml
  My very personal and opinionatedly organized infosec/cybersec sources in one OPML file
  ☆56Updated last year
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆107Updated 3 years ago
• jaredcatkinson / MalwareMorphology
  ☆76Updated 5 months ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆128Updated 6 months ago
• ps-interactive / labs_modern_malware_c2
  labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.
  ☆18Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated 2 years ago