Alternatives and similar repositories for dc29-btv-2021:

Users that are interested in dc29-btv-2021 are comparing it to the libraries listed below

• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆77Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆45Updated 2 weeks ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 8 months ago
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆62Updated 3 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆86Updated last year
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 4 months ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• YossiSassi / hAcKtive-Directory-Forensics
  ☆49Updated last week
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆151Updated 7 months ago
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• MHaggis / notes
  Full of public notes and Utilities
  ☆94Updated last month
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆25Updated 8 months ago
• tsale / EDR-Telemetry-Website
  ☆72Updated 2 weeks ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆64Updated last year
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆48Updated 5 years ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆30Updated 3 months ago
• jsecurity101 / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆144Updated 10 months ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 4 months ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆64Updated 2 years ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆58Updated 6 months ago
• dfir-scripts / siftgrab
  ☆65Updated last month
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆105Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated 2 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆128Updated 2 years ago
• herbiezimmerman / Windows-Event-Logs-With-Event-IDs
  A running list of Windows sources and the related event ids.
  ☆18Updated last year
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆59Updated 6 months ago
• BC-SECURITY / Long-Live-The-Empire
  A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…
  ☆98Updated last year
• svch0stz / velociraptor-detections
  ☆20Updated last year
• lasersharkkiller / Threat-Hunter
  Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…
  ☆16Updated last year