rootsecdev / Microsoft-Security-BaselinesLinks
This is a collection of Security Baselines that I use in my virtual lab environment.
☆20Updated 5 years ago
Alternatives and similar repositories for Microsoft-Security-Baselines
Users that are interested in Microsoft-Security-Baselines are comparing it to the libraries listed below
Sorting:
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆55Updated 4 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 4 years ago
- ☆80Updated 2 years ago
- ☆10Updated 4 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Windows Security Logging☆43Updated 3 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆37Updated 2 years ago
- Virtual Security Operations Center☆51Updated 2 years ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆44Updated 3 years ago
- ☆15Updated 3 years ago
- Defcon 28 - Red Team Village - Applied Purple Teaming - Why Can't We Be Friends☆26Updated 5 years ago
- ☆47Updated 5 months ago
- ☆44Updated 2 months ago
- Kerberoast Detection Script☆30Updated 11 months ago
- Resource links (video, slides & code) for my conference talks | presentations | workshops☆16Updated last month
- Bloodhound Portable for Windows☆52Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated 2 weeks ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 11 months ago
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆24Updated 3 years ago
- Various components we use in labs☆10Updated 4 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- A list of IOCs applicable to PoshC2☆24Updated 5 years ago