mthcht / awesome-lists
Awesome Security lists for SOC/CERT/CTI
☆861Updated this week
Alternatives and similar repositories for awesome-lists:
Users that are interested in awesome-lists are comparing it to the libraries listed below
- A resource containing all the tools each ransomware gangs uses☆948Updated this week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆534Updated 2 weeks ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆640Updated last month
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,333Updated 2 weeks ago
- Practical Windows Forensics Training☆647Updated last year
- Playbooks for SOC Analysts☆422Updated 2 years ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆566Updated last week
- Map tracking ransomware, by OCD World Watch team☆426Updated this week
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆604Updated 8 months ago
- Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers☆644Updated 4 months ago
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,764Updated this week
- Yet another Ransomware gang tracker☆384Updated this week
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆661Updated 2 weeks ago
- Cover various security approaches to attack techniques and also provides new discoveries about security breaches.☆468Updated last month
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆324Updated 6 months ago
- PowerShell Digital Forensics & Incident Response Scripts.☆575Updated this week
- Documentation and scripts to properly enable Windows event logs.☆590Updated last year
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆389Updated 2 months ago
- A curated list of awesome Memory Forensics for DFIR☆396Updated last week
- A curated list of Awesome Threat Intelligence Blogs☆378Updated last month
- Purple Team Exercise Framework☆681Updated last year
- practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response☆390Updated last year
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆868Updated last year
- Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.☆641Updated last year
- CLI tools for forensic investigation of Windows artifacts☆325Updated 4 months ago
- A powerful and user-friendly browser extension that streamlines investigations for security professionals.☆348Updated last month
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…☆241Updated this week
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,085Updated 3 weeks ago
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆551Updated last month
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆706Updated 2 months ago