schwartz1375 / Threat-Hunting-in-AWS

Related projects ⓘ

Alternatives and complementary repositories for Threat-Hunting-in-AWS

• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆56Updated last week
• jeffmcjunkin / endgame
  An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
  ☆9Updated 3 years ago
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 3 months ago
• mattreduce / cti-self-study
  Track progress and keep notes while working through likethecoins' CTI Self Study Plan
  ☆28Updated 2 years ago
• jsecurity101 / Automated-Detection-Pipeline
  ☆15Updated 3 years ago
• rj-chap / ransomware_tips
  Random tips and tricks RE: ransomware
  ☆14Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆43Updated last month
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆35Updated 11 months ago
• ValcanK / HomeLab
  ☆19Updated 3 years ago
• petebryan / blue_team_con
  ☆17Updated 2 years ago
• tsale / Threat-Intelligence-Playbooks
  High-level Threat Intelligence playbooks
  ☆16Updated 3 years ago
• ch33r10 / DEFCON29-BTV-ThreatReportRoulette
  Learn how to get more out of publicly available threat reports to help improve the security posture of your organization! TLP: White Thre…
  ☆15Updated last year
• bengoerz / PurpleTeamDocs
  ☆28Updated 4 years ago
• op7ic / Cloud-Investigate
  A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.
  ☆36Updated 7 months ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 2 years ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• HillsyCyberSec / CheatSheet
  ☆10Updated 3 months ago
• joswr1ght / s3logparse
  Simple parser to get useful information from AWS S3 logs
  ☆24Updated 3 years ago
• NVISOsecurity / nviso-cti
  ☆41Updated 7 months ago
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆35Updated last week
• Antonlovesdnb / SANSTHS2021
  Hunting Malicious Macros SANS Threathunting Summit 2021 Materials
  ☆40Updated 3 years ago
• svch0stz / velociraptor-detections
  ☆19Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆40Updated 4 years ago
• edelucia / rules
  Cyber Threats Detection Rules
  ☆13Updated 2 months ago
• SygniaLabs / security-cloud-scout
  ☆133Updated last year
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆47Updated 2 weeks ago
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• M3NIX / sigmaio
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆47Updated last year
• mlgualtieri / PurpleTeamSummit
  ☆25Updated 3 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆59Updated last week