Alternatives and similar repositories for latma:

Users that are interested in latma are comparing it to the libraries listed below

• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆65Updated 2 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• ST1LLY / dc-sonar
  Analyzing AD domains for security risks related to user accounts
  ☆63Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆80Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• tothi / smbmap
  SMBMap is a handy SMB enumeration tool - here with Kerberos support
  ☆73Updated 3 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 3 months ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆33Updated 2 weeks ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 10 months ago
• NVISOsecurity / nviso-cti
  ☆41Updated 10 months ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆59Updated 2 years ago
• secureworks / whiskeysamlandfriends
  GoldenSAML Attack Libraries and Framework
  ☆67Updated 8 months ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• slaughterjames / excelpeek
  ☆38Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• nullenc0de / servicelens
  ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …
  ☆74Updated 3 months ago
• cnotin / m365_groups_enum
  Enumerate Microsoft 365 Groups in a tenant with their metadata
  ☆52Updated 3 years ago
• d4rk-d4nph3 / Ransim
  Ransomware Simulator for testing Blue Team Detections
  ☆37Updated 2 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 3 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Updated 3 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆36Updated 3 months ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• Semperis / SilverSamlForger
  Silver SAML forgery tool
  ☆49Updated 11 months ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 3 years ago
• nyxgeek / guestlist
  tool for identifying guest relationships between companies
  ☆84Updated 7 months ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated 11 months ago
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆30Updated 2 years ago