secureworks / dcept

Related projects ⓘ

Alternatives and complementary repositories for dcept

• gfoss / PSRecon
  PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted da…
  ☆479Updated 7 years ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆598Updated 4 years ago
• SekoiaLab / Fastir_Collector
  ☆505Updated 3 years ago
• jeffbryner / MozDef
  MozDef: The Mozilla Defense Platform
  ☆67Updated 4 years ago
• aplura / Tango
  Honeypot Intelligence with Splunk
  ☆254Updated 6 years ago
• rep / dionaea
  dionaea low interaction honeypot (forked from dionaea.carnivore.it)
  ☆154Updated 9 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆423Updated 10 months ago
• Invoke-IR / Uproot
  Currently not updated for WMIEvent module...
  ☆261Updated 8 years ago
• giMini / RWMC
  RWMC is no longer supported. Please use PowerMemory.
  ☆166Updated 8 years ago
• A-mIn3 / WINspect
  Powershell-based Windows Security Auditing Toolbox
  ☆572Updated 5 years ago
• vitaly-kamluk / bitscout
  Remote forensics meta tool
  ☆462Updated 4 months ago
• GoFetchAD / GoFetch
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆628Updated 7 years ago
• mattifestation / CimSweep
  CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…
  ☆645Updated 5 years ago
• rocknsm / rock
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆446Updated last year
• secabstraction / PowerCat
  A PowerShell TCP/IP swiss army knife.
  ☆560Updated 7 years ago
• shellntel-acct / scripts
  ☆423Updated 7 years ago
• Invoke-IR / ACE
  Automated, Collection, and Enrichment Platform
  ☆322Updated 4 years ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 5 years ago
• nsacyber / Pass-the-Hash-Guidance
  Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber
  ☆198Updated 7 years ago
• sensepost / DET
  (extensible) Data Exfiltration Toolkit (DET)
  ☆820Updated 7 years ago
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,154Updated 6 years ago
• HurricaneLabs / machinae
  Machinae Security Intelligence Collector
  ☆504Updated 5 months ago
• CrowdStrike / falcon-orchestrator
  CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities
  ☆186Updated 9 months ago
• int13h / squert
  A Simple QUEry and Report Tool
  ☆142Updated 5 years ago
• lmco / laikaboss
  Laika BOSS: Object Scanning System
  ☆739Updated last year