shadawck / awesome-endpoint-detection-and-response

Related projects ⓘ

Alternatives and complementary repositories for awesome-endpoint-detection-and-response

• silverfort-open-source / latma
  ☆79Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆87Updated this week
• pain0x0 / awesome-incident-response
  ☆19Updated last year
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆74Updated last month
• Sh1n0g1 / z9
  PowerShell Script Analyzer
  ☆66Updated last year
• simeononsecurity / Windows-Hardening-CTF
  A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
  ☆25Updated 3 months ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆108Updated 3 years ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆53Updated last week
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• andreacristaldi / APTmap
  Graphical map of known Advanced Persistent Threats
  ☆42Updated last year
• The-DFIR-Report / Yara-Rules
  ☆61Updated this week
• mitre / atomic
  A MITRE Caldera plugin
  ☆38Updated this week
• alt3kx / wafaray
  Enhance your malware detection with WAF + YARA (WAFARAY)
  ☆107Updated 2 years ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆124Updated last year
• ninoseki / shimon
  URL fingerprinting made easy
  ☆79Updated 7 months ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆28Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆80Updated 3 months ago
• StevenD33 / Lab-DFIR-SOC
  ☆64Updated 3 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆59Updated last week
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 7 months ago
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆38Updated 2 years ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆131Updated 3 months ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆146Updated 5 months ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆58Updated 7 months ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated last year
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆65Updated this week
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆49Updated last month
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆166Updated this week
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆51Updated 4 months ago