mlgualtieri / PurpleTeamSummitLinks
☆27Updated 4 years ago
Alternatives and similar repositories for PurpleTeamSummit
Users that are interested in PurpleTeamSummit are comparing it to the libraries listed below
Sorting:
- ☆29Updated 4 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 3 years ago
- ☆42Updated last year
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆105Updated 2 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated last month
- This repo is where I store my Threat Hunting ideas/content☆88Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- A collection of Sigma rules organized by MITRE ATT&CK technique☆17Updated 3 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- Ransomware Simulator for testing Blue Team Detections☆37Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- ☆38Updated 3 years ago
- ESXi Cyber Security Incident Response Script☆23Updated 9 months ago
- Automatic detection engineering technical state compliance☆55Updated 11 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- ShellSweeping the evil.☆52Updated last year
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- ☆47Updated 2 months ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆12Updated 6 years ago