michaelb / simple-user-simulationLinks
powershell script to simulate activity by a user
☆21Updated 5 years ago
Alternatives and similar repositories for simple-user-simulation
Users that are interested in simple-user-simulation are comparing it to the libraries listed below
Sorting:
- ☆47Updated 5 months ago
- Simple PowerShell script to enable process scanning with Yara.☆98Updated 2 years ago
- Slides of my public talks☆56Updated last year
- A home for detection content developed by the delivr.to team☆70Updated last month
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆83Updated last year
- A repo to support the book☆109Updated 4 years ago
- ☆29Updated 4 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- ☆33Updated last year
- This repo is where I store my Threat Hunting ideas/content☆88Updated 2 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated last month
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆78Updated 4 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- ☆27Updated 4 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Active C&C Detector☆156Updated last year
- Bloodhound Portable for Windows☆53Updated 2 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆46Updated 6 months ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Active Directory Purple Team Playbook☆112Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆24Updated last month
- My conference presentations☆83Updated last month
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated last month
- Pushes Sysmon Configs☆88Updated 4 years ago
- ShellSweeping the evil.☆53Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆26Updated 6 months ago
- Threat Simulation Indexes☆38Updated 4 months ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year