mthcht / awesome-lists
Awesome Security lists for SOC/CERT/CTI
☆934Updated this week
Alternatives and similar repositories for awesome-lists:
Users that are interested in awesome-lists are comparing it to the libraries listed below
- Awesome list of keywords and artifacts for Threat Hunting sessions☆563Updated last month
- A resource containing all the tools each ransomware gangs uses☆1,008Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆665Updated 2 months ago
- Playbooks for SOC Analysts☆447Updated 2 years ago
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,368Updated 2 months ago
- Practical Windows Forensics Training☆657Updated last year
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,787Updated last week
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆342Updated 8 months ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆658Updated last week
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆612Updated 10 months ago
- Yet another Ransomware gang tracker☆414Updated last week
- Useful resources for SOC Analyst and SOC Analyst candidates.☆716Updated last year
- PowerShell Digital Forensics & Incident Response Scripts.☆595Updated 3 weeks ago
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆675Updated 2 weeks ago
- A suite of Tools to aid Incidence Response and Live Forensics for - Windows (Powershell) | Linux (Bash) | MacOS (Shell)☆569Updated 6 months ago
- Map tracking ransomware, by OCD World Watch team☆464Updated last month
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…☆289Updated this week
- A curated list of Awesome Threat Intelligence Blogs☆390Updated 2 months ago
- Purple Team Exercise Framework☆696Updated last year
- Documentation and scripts to properly enable Windows event logs.☆603Updated last year
- Live Feed of C2 servers, tools, and botnets☆621Updated this week
- A curated list of awesome Memory Forensics for DFIR☆429Updated 2 months ago
- Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers☆664Updated 5 months ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆390Updated 3 months ago
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆563Updated 3 months ago
- Cover various security approaches to attack techniques and also provides new discoveries about security breaches.☆473Updated last week
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆596Updated last month
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆901Updated last year
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆725Updated last month
- practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response☆397Updated last year