referefref / sinon
Automation tool for Windows Deception Host Burn-In
☆76Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for sinon
- ☆67Updated 8 months ago
- VirtualGHOST Detection Tool☆87Updated 6 months ago
- God Mode Detection Rules☆131Updated 3 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆49Updated last month
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆66Updated last week
- Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …☆64Updated 5 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆162Updated last week
- Jupyter Univere is a search engine for all infosec jupyter notebooks☆20Updated 4 months ago
- Living Off Security Tools☆41Updated 3 weeks ago
- ☆83Updated 3 months ago
- Canary Detection☆162Updated 7 months ago
- Anvilogic Forge☆86Updated this week
- ☆72Updated this week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆116Updated 4 months ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆98Updated last month
- Basic protection against HTML smuggling attempts.☆45Updated last week
- Explore the GOAD Active Directory lab in 5 minutes with Adalanche☆35Updated 10 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆141Updated 2 months ago
- A Caldera plugin for the emulation of complete, realistic cyberattack chains.☆44Updated last month
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆110Updated 7 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆43Updated last month
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 3 months ago
- LotL RMM☆101Updated last week
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆161Updated last month
- ☆69Updated last month
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆101Updated 7 months ago
- ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).☆93Updated 2 months ago
- Halberd : Multi-Cloud Attack Tool☆216Updated this week
- Repository that contains a set of purposefully erroneous Yara rules.☆48Updated 10 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆131Updated this week