Alternatives and similar repositories for dc29-btv-2021:

Users that are interested in dc29-btv-2021 are comparing it to the libraries listed below

• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆77Updated 3 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆106Updated last year
• rj-chap / CFWorkshop
  Understanding and analyzing carrier files workshop repo
  ☆50Updated 5 years ago
• jsecurity101 / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆144Updated last year
• YossiSassi / hAcKtive-Directory-Forensics
  ☆50Updated 2 months ago
• DefensiveOrigins / DO-LAB
  ☆46Updated 3 weeks ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 11 months ago
• ahhh / Cybersecurity-Tradecraft
  A repo to support the book
  ☆107Updated 3 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆26Updated 11 months ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆92Updated 4 years ago
• ssnkhan / adversarial-threat-modelling
  Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
  ☆67Updated last week
• HuskyHacks / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆38Updated 3 years ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 3 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆32Updated last year
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆95Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆93Updated 2 years ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆98Updated last month
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated last year
• clr2of8 / TellTail
  A tool to display Windows Event logs as they happen.
  ☆12Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated 2 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 3 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆67Updated last month
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 3 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated 2 years ago
• BC-SECURITY / Long-Live-The-Empire
  A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…
  ☆101Updated last year
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆39Updated 3 weeks ago
• target / Threat-Hunting
  Jupyter notebooks for threat hunting
  ☆55Updated this week
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 7 months ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆52Updated last year