Alternatives and similar repositories for Bro-Scripts

Users that are interested in Bro-Scripts are comparing it to the libraries listed below

• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• mandiant / ioc-scanner-CVE-2019-19781
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆94Updated 5 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆74Updated 6 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 6 years ago
• exp0se / detect_kerberos_attacks
  Detect kerberos attacks in pcap files
  ☆29Updated 9 years ago
• inishantgrover / Shodmon
  The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided
  ☆33Updated 4 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 7 years ago
• GoSecure / gophish-cli
  Gophish Python cli to perform huge phishing campaigns
  ☆40Updated 6 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆69Updated 6 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated 2 years ago
• timfrazier1 / ART_Phantom
  Atomic Red Team App for Phantom
  ☆16Updated 5 years ago
• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆52Updated last year
• jimtin / IRCoreForensicFramework
  Powershell / C# based cross platform forensic framework based for live incident response
  ☆23Updated 5 years ago
• 0xAnalyst / Sysmon
  Sysmon config for both Windows and Linux Devices. Windows one is a bit dated
  ☆56Updated last year
• outflanknl / PasswordDump2ELK
  Clean public password dump files and store in ELK
  ☆38Updated 7 years ago
• mvelazc0 / PurpleSpray
  PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…
  ☆50Updated 6 years ago
• thirdeyeintelligence / Tools-mindmap
  mindmap created for tools can be used during analysis/investigation
  ☆27Updated 8 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 5 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• CroweCybersecurity / smugglebus
  ☆33Updated 3 years ago
• dstepanic / attck_empire
  Generate ATT&CK Navigator layer file from PowerShell Empire agent logs
  ☆48Updated 7 years ago
• ubeeri / Invoke-PWAudit
  A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts
  ☆32Updated 6 years ago
• digipenguin / powerkatz
  ☆17Updated 10 years ago
• Compiler-Error / dankAlerts
  dankAlerts is powered by Sysmon and Memes. Would you notice if a suspicious process was recorded in the event log?
  ☆18Updated 5 years ago
• brokensound77 / toruk
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Updated 6 years ago
• OneLogicalMyth / Invoke-GPPCSE
  Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords
  ☆33Updated 6 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆32Updated 2 years ago
• Ne0nd0g / shellbot
  Slack/Microsoft Teams notification for new Empire/Meterpreter checkins
  ☆25Updated 10 months ago