Alternatives and similar repositories for dc29-btv-2021:

Users that are interested in dc29-btv-2021 are comparing it to the libraries listed below

• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆77Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆46Updated 3 weeks ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆59Updated this week
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• MalTrakLab / purple-team-cloud-lab
  Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them
  ☆27Updated 11 months ago
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆48Updated 5 years ago
• ahhh / Cybersecurity-Tradecraft
  A repo to support the book
  ☆106Updated 3 years ago
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 3 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆25Updated 9 months ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆105Updated last year
• MHaggis / notes
  Full of public notes and Utilities
  ☆97Updated last week
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 9 months ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆86Updated last year
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• clr2of8 / TellTail
  A tool to display Windows Event logs as they happen.
  ☆12Updated last year
• CyberCastle-Blueteam / OpenThreatDetectionRules
  A collection of open source threat detection rules created by Cyber Castle's team.
  ☆14Updated 2 years ago
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆36Updated 4 years ago
• nrrpinto / inquisitor
  Forensics artifacts collection
  ☆19Updated 3 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 6 months ago
• deFr0ggy / PMAT-Labs-Walkthroughs
  Repo containing my personal walkthroughs of PMAT Labs i.e. PMAT Malware Samples.
  ☆43Updated 2 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆128Updated 2 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆50Updated last month
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated 2 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆53Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆67Updated 2 weeks ago
• elementalsouls / DumpLSASS
  ☆34Updated 11 months ago
• target / Threat-Hunting
  Detection of obfuscated Powershell commands
  ☆54Updated last year
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆112Updated last year