Alternatives and similar repositories for incident-runbook:

Users that are interested in incident-runbook are comparing it to the libraries listed below

• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆61Updated 8 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆121Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 11 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆72Updated 2 weeks ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• MalTrakLab / purple-team-cloud-lab
  Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them
  ☆28Updated last year
• YoNixNeXRo / C2Live
  Track C2 servers, tools, and botnets over time by framework and location
  ☆37Updated 2 months ago
• timo123421 / Automatic-Intelligence-feed
  ☆34Updated last year
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆54Updated 2 years ago
• RanjitPatil / Static-Dynamic-Malware-Analysis
  ☆13Updated 2 years ago
• joshbrunty / DFIR-Regular-Expressions
  Regular Expressions List used in Digital Forensic Tasks
  ☆83Updated last month
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆87Updated 5 months ago
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆120Updated last year
• The-Taggart-Institute / responsible-red-teaming
  Labs & Code snippets for RRT on TTI
  ☆39Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆51Updated 4 months ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated last month
• Kc57 / Awesome-Pentest
  A list of awesome penetration testing tools and resources.
  ☆80Updated last year
• CyberSecurityUP / EDR-Assessment
  This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…
  ☆53Updated 6 months ago
• HernanRodriguez1 / BrowserOSINT
  ☆55Updated 10 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆154Updated last week
• daniellowrie / C2-List
  List of Command&Control (C2) software
  ☆36Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 7 months ago
• kha1ifuzz / AD-Config-Automation
  Scripts and piece of codes used for Active Directory configuration
  ☆84Updated 2 years ago
• maurizi0 / pentest-python
  A simple pentest container equipped with common python pentest tools.
  ☆41Updated last month
• q0phi80 / Wakanda-Land
  ☆41Updated 2 years ago
• hmaverickadams / autoNTDS
  autoNTDS is an automation script designed to simplify the process of dumping and cracking NTDS hashes using secretsdump.py and hashcat
  ☆109Updated last year
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 3 years ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆150Updated 2 years ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆20Updated last year
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated 8 months ago