trevorbryant / usgov-controls

Related projects ⓘ

Alternatives and complementary repositories for usgov-controls

• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆24Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆43Updated 3 weeks ago
• Kaidja / EntraID
  Automation around Entra ID
  ☆34Updated 4 months ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆51Updated last year
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆34Updated 10 months ago
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆16Updated 2 weeks ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆25Updated 10 months ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆38Updated 4 years ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆19Updated 5 years ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆60Updated 7 months ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 2 years ago
• invictus-ir / Invictus-training
  Repository with supporting materials for Invictus Academy/Training
  ☆35Updated last month
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆70Updated 2 weeks ago
• GossiTheDog / nmap-scripts
  repository containing some nmap scripts
  ☆11Updated 3 years ago
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆24Updated last year
• jafarspalace / Crowdstrike-Falcon-Scripts
  Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation
  ☆22Updated 3 months ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆38Updated 2 years ago
• PwnDefend / cyber_leadership_slide_examples
  ☆17Updated 2 years ago
• simeononsecurity / Shodan_PS
  A collection of PowerShell modules for interacting with the Shodan API. Includes modules for returning information about the API, client …
  ☆23Updated 3 months ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆35Updated last week
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆10Updated 4 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• jasonsford / IPScraper
  This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…
  ☆18Updated 2 years ago
• jsa2 / CloudShellAadApps
  ☆26Updated last year
• chihebchebbi / Sentinel2Attack
  ☆14Updated 3 years ago
• PwnDefend / AzureAuditPrep
  ☆13Updated 3 years ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆13Updated last month