mttaggart / seclabLinks
Automated security lab provisioning
☆84Updated 2 weeks ago
Alternatives and similar repositories for seclab
Users that are interested in seclab are comparing it to the libraries listed below
Sorting:
- Completely Risky Active-Directory Simulation Hub☆103Updated 2 years ago
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆202Updated this week
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated 2 weeks ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆258Updated last year
- ☆122Updated last year
- Creation of a laboratory for malware analysis in AWS☆104Updated 2 years ago
- Jupyter Notebooks for the Blue Team☆148Updated 8 months ago
- WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.☆165Updated 7 months ago
- God Mode Detection Rules☆134Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆189Updated 11 months ago
- Windows Malware Investigation Scripts & Docs☆85Updated last year
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆145Updated 3 weeks ago
- LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.☆192Updated 9 months ago
- MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).☆408Updated last year
- ☆74Updated last week
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆318Updated last month
- Infrastructure Automation☆357Updated last year
- Retired TrustedSec Capabilities☆248Updated 11 months ago
- Tools to automatically create a SANS index based off the course pdf files.☆113Updated 5 years ago
- A collection of CVEs weaponized by ransomware operators☆125Updated last month
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆329Updated 10 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆290Updated last week
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆179Updated 5 months ago
- VirtualGHOST Detection Tool☆97Updated last year
- AD Lab Setup Scripts☆79Updated 6 months ago
- BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse en…☆478Updated 2 weeks ago
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆170Updated 3 weeks ago
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆159Updated 2 years ago
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆321Updated 6 months ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆107Updated 2 years ago