threatexpress / threat-mitigationLinks
Threat Mitigation Strategies
☆25Updated last year
Alternatives and similar repositories for threat-mitigation
Users that are interested in threat-mitigation are comparing it to the libraries listed below
Sorting:
- BloodHound Data Scanner☆45Updated 4 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Continuous kerberoast monitor☆45Updated last year
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆26Updated 2 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Microsoft Flow Attack Framework☆23Updated 5 years ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated 2 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ☆23Updated 3 years ago
- A set of tools for collecting forensic information☆26Updated 5 years ago
- OSSEM Modular☆27Updated 4 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- Searches open files shares for password files, database backups, etc. Extend as you see fit☆29Updated 5 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- ☆42Updated last year
- Set of ultra technical notes about AD☆18Updated 7 years ago
- Repository for LNK stuff☆30Updated 2 years ago
- Defensive-oriented Active Directory enumeration☆24Updated 9 years ago
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆53Updated 4 years ago
- Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.☆53Updated last year
- Accompanying PowerShell Modules for DevSec Defense Presentation☆29Updated 7 years ago
- C# User Simulation☆32Updated 2 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- Kerberoast Detection Script☆30Updated 7 months ago
- ☆33Updated 3 years ago