mr-r3b00t / soc_chef
Security Operations Chef
☆28Updated last week
Alternatives and similar repositories for soc_chef
Users that are interested in soc_chef are comparing it to the libraries listed below
Sorting:
- Windows Malware Investigation Scripts & Docs☆82Updated 6 months ago
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆292Updated 2 months ago
- A tool for mapping cyber crime☆139Updated last month
- AD Lab Setup Scripts☆72Updated this week
- ☆178Updated last year
- Finding ClickFix and FakeCAPTCHA like it's 1999☆36Updated this week
- PowerShell tools to help defenders hunt smarter, hunt harder.☆374Updated last month
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆206Updated 7 months ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆102Updated 2 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆156Updated last month
- Security Scripts and Sources for daily usage.☆59Updated last month
- ThreatSeeker: Threat Hunting via Windows Event Logs☆120Updated 2 years ago
- List of tools and resources for pentesting Microsoft Active Directory☆69Updated last week
- ☆59Updated 4 years ago
- Completely Risky Active-Directory Simulation Hub☆100Updated last year
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆190Updated last month
- ☆74Updated last month
- A collection of CVEs weaponized by ransomware operators☆114Updated last week
- This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…☆13Updated last year
- God Mode Detection Rules☆134Updated 9 months ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆243Updated 3 weeks ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆391Updated 4 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆185Updated 4 months ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆250Updated last year
- Open Source Security Operations Center Documentation☆180Updated last week
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆123Updated last year
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆194Updated 4 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆73Updated 3 weeks ago
- This class is a broad overview and dive into Exploiting AI and the different attacks that exist, and best practice strategies.☆50Updated this week
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆99Updated 3 weeks ago