Alternatives and similar repositories for defending-off-the-land:

Users that are interested in defending-off-the-land are comparing it to the libraries listed below

• HillsyCyberSec / CheatSheet
  ☆10Updated 6 months ago
• bcdannyboy / DGWR
  Dont Gamble with Risk
  ☆14Updated 11 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆13Updated last month
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated last year
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆14Updated 9 months ago
• antman1p / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆42Updated 3 months ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• lasq88 / socgholish_finder
  ☆14Updated last year
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆50Updated 11 months ago
• brokensound77 / toruk
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Updated 5 years ago
• akapv / Sysmon_to_AdvancedHunting_KQL
  ☆10Updated 4 years ago
• humanaoffsec / raccoon-infostealer-emulation
  Recreation of most of the Raccoon Infostealer's functionality, true to threat intelligence, for safe testing in organizational environmen…
  ☆16Updated last year
• moohax / Deep-Drop
  Machine learning enabled dropper
  ☆26Updated last year
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆44Updated last year
• k3idii / CobaltStrike-Tools
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆27Updated last year
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated last year
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 8 months ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last year
• Neo23x0 / ThreatResearch-Reporting-Guide
  Offensive Research Guide to Help Defense Improve Detection
  ☆30Updated 2 years ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆33Updated 3 weeks ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• RiccardoAncarani / bloodhound-playbook
  Reproducible and extensible BloodHound playbooks
  ☆42Updated 5 years ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆17Updated 3 years ago
• sleeptok3n / RoleCrawl
  ☆20Updated last year
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 3 years ago
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆44Updated last month
• sandmaxprime / VagrantMalwareWin10VM
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Updated 3 years ago
• nmantani / PS-TrustedDocuments
  PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
  ☆34Updated last year