Alternatives and similar repositories for Presentations

Users that are interested in Presentations are comparing it to the libraries listed below

• OTRF / Set-AuditRule
  Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity
  ☆94Updated 3 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆90Updated 4 years ago
• mvelazc0 / attack2jira
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆115Updated 2 years ago
• jwillyamz / ezEmu
  See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
  ☆105Updated 2 years ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆115Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• secprentice / PowerShellWatchlist
  List of PowerShell commands and commandlets that should be in your Powershel watchlist
  ☆38Updated 4 years ago
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆150Updated 4 months ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆74Updated 3 years ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆170Updated 3 years ago
• agreenjay / sysmon
  A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data
  ☆39Updated 5 years ago
• jonny-jhnson / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆152Updated last year
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆72Updated last month
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• mlgualtieri / PurpleTeamSummit
  ☆28Updated 4 years ago
• sumeshi / evtx2es
  A library for fast parse & import of Windows Eventlogs into Elasticsearch.
  ☆85Updated 6 months ago
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆110Updated 7 years ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆156Updated 4 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 3 years ago
• Defenders-Guide / TheDefendersGuide
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆159Updated 2 years ago
• slaughterjames / excelpeek
  ☆38Updated 4 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated last year
• NVISOsecurity / nviso-cti
  ☆44Updated 6 months ago
• jonny-jhnson / Windows-API-To-Sysmon-Events
  A repository that maps API calls to Sysmon Event ID's.
  ☆121Updated 3 years ago
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆83Updated 2 years ago
• fraktalcyber / Fransom
  Fraktal's Ransomware Emulator
  ☆101Updated last year
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆97Updated 2 months ago
• carbonblack / excel4-tests
  Carbon Black TAU Excel 4 Macro Analysis
  ☆44Updated last year
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 4 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated 2 years ago