Alternatives and similar repositories for AttackSurfaceAnalyzer

Users that are interested in AttackSurfaceAnalyzer are comparing it to the libraries listed below

• SwiftOnSecurity / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆5,367Updated last year
• PaulSec / awesome-windows-domain-hardening
  A curated list of awesome Security Hardening techniques for Windows.
  ☆1,790Updated 6 years ago
• netwrix / pingcastle
  PingCastle - Get Active Directory Security at 80% in 20% of the time
  ☆2,740Updated 3 weeks ago
• nsacyber / Windows-Secure-Host-Baseline
  Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
  ☆1,587Updated 3 years ago
• cisagov / Sparrow
  Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 en…
  ☆1,432Updated 3 years ago
• olafhartong / sysmon-modular
  A repository of sysmon configuration modules
  ☆2,963Updated last year
• clong / DetectionLab
  Automate the creation of a lab environment complete with security tooling and logging best practices
  ☆4,897Updated last year
• JPCERTCC / LogonTracer
  Investigate malicious Windows logon by visualizing and analyzing Windows event log
  ☆3,043Updated 3 months ago
• 0x6d69636b / windows_hardening
  HardeningKitty and Windows Hardening Settings
  ☆2,588Updated 2 weeks ago
• sans-blue-team / DeepBlueCLI
  ☆2,382Updated 2 years ago
• mandiant / red_team_tool_countermeasures
  ☆2,664Updated last year
• nshalabi / SysmonTools
  Utilities for Sysmon
  ☆1,568Updated 4 months ago
• gtworek / PSBits
  Simple (relatively) things allowing you to dig a bit deeper than usual.
  ☆3,455Updated 3 weeks ago
• microsoft / msticpy
  Microsoft Threat Intelligence Security Tools
  ☆1,934Updated last week
• FuzzySecurity / PowerShell-Suite
  My musings with PowerShell
  ☆2,704Updated 4 years ago
• Velocidex / velociraptor
  Digging Deeper....
  ☆3,726Updated last week
• trustedsec / SysmonCommunityGuide
  TrustedSec Sysinternals Sysmon Community Guide
  ☆1,359Updated last month
• WithSecureLabs / chainsaw
  Rapidly Search and Hunt through Windows Forensic Artefacts
  ☆3,438Updated 3 months ago
• outflanknl / RedELK
  Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…
  ☆2,614Updated last month
• NextronSystems / APTSimulator
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,707Updated 4 months ago
• ukncsc / lme
  Logging Made Easy
  ☆709Updated 2 years ago
• alexandreborges / malwoverview
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,523Updated 2 weeks ago
• Invoke-IR / PowerForensics
  PowerForensics provides an all in one platform for live disk forensic analysis
  ☆1,426Updated 2 years ago
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆2,055Updated last week
• Azure / Stormspotter
  Azure Red Team tool for graphing Azure and Azure Active Directory objects
  ☆1,684Updated 2 years ago
• AutomatedLab / AutomatedLab
  AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell script…
  ☆2,170Updated 2 weeks ago
• palantir / windows-event-forwarding
  A repository for using windows event forwarding for incident detection and response
  ☆1,294Updated 4 months ago
• scipag / HardeningKitty
  HardeningKitty - Checks and hardens your Windows configuration
  ☆1,720Updated last year
• yampelo / beagle
  Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
  ☆1,337Updated 3 years ago
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,712Updated 3 weeks ago