Alternatives and similar repositories for runZero-scripts

Users that are interested in runZero-scripts are comparing it to the libraries listed below

• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆123Updated 2 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆57Updated 3 years ago
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆97Updated 2 years ago
• dfir-scripts / siftgrab
  ☆68Updated 2 months ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆88Updated 5 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 5 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆79Updated last week
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• bruneaug / DShield-SIEM
  DShield Sensor Log Collection with ELK
  ☆44Updated last week
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated 2 years ago
• svch0stz / velociraptor-detections
  ☆22Updated 3 years ago
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆115Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 10 months ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 4 years ago
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆53Updated last year
• gertjanbruggink / presentations
  This directory contains presentations and related materials of my speaking engagements. I also use this to record historical presentation…
  ☆17Updated 11 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆155Updated 2 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆58Updated 11 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆130Updated last month
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆92Updated 2 years ago
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆97Updated 2 years ago
• joeavanzato / crackdown
  Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
  ☆17Updated 2 years ago
• Cyb3rWard0g / IntelRAGU
  Intel Retrieval Augmented Generation (RAG) Utilities
  ☆91Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆92Updated last year
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated last month
• f-bader / EntraID-ErrorCodes
  Entra ID (Azure AD) error codes as JSON
  ☆16Updated 3 months ago
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆117Updated 2 months ago
• DefensiveOrigins / DO-LAB
  ☆50Updated last week
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆25Updated last year