skandler / simulate-akira
Simulation of Akira Ransomware with Invoke-AtomicTest
☆12Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for simulate-akira
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆39Updated 2 weeks ago
- ASR Configurator, Essentials and Atomic Testing☆36Updated 3 weeks ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆29Updated last week
- create a "simulated internet" cyber range environment☆13Updated last month
- ☆72Updated this week
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 4 months ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Updated 6 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Repository that contains random short projects like write-ups, PowerShell scripts, and more.☆26Updated 2 weeks ago
- CarbonBlack EDR detection rules and response actions☆71Updated 2 months ago
- Default Detections for EDR☆94Updated 9 months ago
- CIS Benchmark testing of Windows SIEM configuration☆43Updated last year
- Contains compiled binaries of Volatility☆29Updated last month
- This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe☆30Updated 5 months ago
- Baseline a Windows System against LOLBAS☆25Updated 6 months ago
- DEFCON 31 slide deck and video link☆57Updated 4 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆47Updated 10 months ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆45Updated 7 months ago
- ☆47Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 6 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆41Updated this week
- Table of AD and Azure assets and whether they belong to Tier Zero☆25Updated last year
- Living off the False Positive!☆29Updated 3 months ago
- Slides of my public talks☆46Updated 11 months ago
- ☆40Updated last year
- Detection rule validation☆41Updated last year
- M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.☆112Updated this week