Alternatives and similar repositories for adversarial-threat-modelling

Users that are interested in adversarial-threat-modelling are comparing it to the libraries listed below

• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆88Updated 2 years ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆108Updated 2 years ago
• OTRF / SimuLand
  Cloud Templates and scripts to deploy mordor environments
  ☆129Updated 4 years ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 3 years ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆88Updated last year
• bengoerz / PurpleTeamDocs
  ☆29Updated 4 years ago
• CrowdStrike / xwf-yara-scanner
  ☆87Updated last year
• DefensiveOrigins / DO-LAB
  ☆47Updated 2 months ago
• olafhartong / Presentations
  My conference presentations
  ☆66Updated last year
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated 2 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆94Updated 2 years ago
• TazWake / Public
  Collection of scripts provided for public use
  ☆34Updated last month
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆148Updated 2 years ago
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆38Updated last year
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆114Updated last year
• jwillyamz / ezEmu
  See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
  ☆105Updated 2 years ago
• 00010111 / smbtimeline
  ☆35Updated 8 months ago
• OTRF / Set-AuditRule
  Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity
  ☆93Updated 3 years ago
• jonny-jhnson / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆147Updated last year
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆34Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆44Updated 4 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆55Updated 5 years ago
• joswr1ght / s3logparse
  Simple parser to get useful information from AWS S3 logs
  ☆26Updated 3 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 3 months ago
• mvelazc0 / attack2jira
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆113Updated 2 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated last month
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago