Alternatives and similar repositories for awesome-incident-response:

Users that are interested in awesome-incident-response are comparing it to the libraries listed below

• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆39Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆109Updated 3 years ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆125Updated 8 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆54Updated 2 months ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• MazX0p / ThreatHound
  ☆156Updated last year
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆92Updated this week
• joeavanzato / crackdown
  Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
  ☆15Updated last year
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆59Updated 2 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆74Updated 2 months ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆84Updated 2 years ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆143Updated last month
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆30Updated 2 years ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆105Updated last year
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆114Updated 3 months ago
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆42Updated 4 months ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 4 months ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆123Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆86Updated last year
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆80Updated 3 weeks ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆38Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• center-for-threat-informed-defense / top-attack-techniques
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆116Updated 5 months ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆48Updated last year
• mlgualtieri / PurpleTeamSummit
  ☆26Updated 3 years ago
• silverfort-open-source / latma
  ☆79Updated last year
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆61Updated 9 months ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS
  ☆32Updated 2 months ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 2 years ago