the2dl / SSDTLinks
Stupid Simple Detection Testing
☆13Updated last year
Alternatives and similar repositories for SSDT
Users that are interested in SSDT are comparing it to the libraries listed below
Sorting:
- A home for detection content developed by the delivr.to team☆73Updated 3 months ago
- ShellSweeping the evil.☆53Updated last year
- Attack Tool Timing and Reporting - Structured Attack Logging Format☆22Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- ☆44Updated 4 months ago
- Automatic detection engineering technical state compliance☆55Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆96Updated 3 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆27Updated last year
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆29Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆61Updated 3 years ago
- Threat Mitigation Strategies☆26Updated 2 months ago
- Common framework for designing a detection and response framework for the most common MFT solutions☆16Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated 3 weeks ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆82Updated last month
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆53Updated 2 years ago
- Living off the False Positive!☆40Updated 9 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated 2 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 4 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Updated 3 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated last year
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- General Content☆26Updated last year
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- ESXi Cyber Security Incident Response Script☆25Updated last year
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…☆29Updated 4 months ago
- Bloodhound Portable for Windows☆53Updated 2 years ago