tenable / atomic-red-teamLinks
Small and highly portable detection tests based on MITRE's ATT&CK.
☆10Updated 4 months ago
Alternatives and similar repositories for atomic-red-team
Users that are interested in atomic-red-team are comparing it to the libraries listed below
Sorting:
- Threat Hunter's Knowledge Base☆22Updated 3 years ago
- Sharing Threat Hunting runbooks☆26Updated 5 years ago
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆32Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- CSIRT Jump Bag☆26Updated last year
- Various components we use in labs☆10Updated 4 years ago
- ☆11Updated 4 years ago
- Intrusion Detection Honeypots Book Code☆25Updated 4 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 6 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- ☆28Updated 5 months ago
- ☆30Updated 6 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- MITRE Shield website☆19Updated 3 years ago
- Hashes of infamous malware☆26Updated last year
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆24Updated 2 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆49Updated 2 years ago
- ☆18Updated 3 years ago
- Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation☆26Updated last year
- Reference sheet for Threat Hunting Professional Course☆25Updated 6 years ago
- Tool used to perform threat intelligence against packet data☆35Updated 5 months ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- Automatic detection engineering technical state compliance☆55Updated 11 months ago
- This is a collection of Security Baselines that I use in my virtual lab environment.☆21Updated 5 years ago
- Python command line tool used for generating GIAC Certification indexes.☆26Updated last year
- Expert Investigation Guides☆51Updated 4 years ago