Alternatives and similar repositories for usgov-controls

Users that are interested in usgov-controls are comparing it to the libraries listed below

• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Updated last year
• DefensiveOrigins / DO-LAB
  ☆47Updated last month
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆21Updated last week
• PwnDefend / AzureAuditPrep
  ☆13Updated 4 years ago
• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆25Updated 3 years ago
• cisagov / orchestrator
  Orchestrate gatherer, scanner, saver, and trustymail_reporter
  ☆18Updated last week
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated 2 years ago
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆13Updated last week
• HASecuritySolutions / WECComputerGroupMgmt
  ☆11Updated 3 years ago
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆38Updated 4 months ago
• maartengoet / notebooks
  Jupyter notebooks
  ☆25Updated 4 years ago
• chihebchebbi / Sentinel2Attack
  ☆14Updated 4 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆26Updated 2 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 7 months ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 4 years ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆106Updated 5 months ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated 2 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 5 years ago
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆47Updated last year
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 3 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆48Updated last year
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆28Updated 2 years ago
• cisagov / vulnerable-instances
  Virtual machines that are set up with a variety of known vulnerabilities.
  ☆14Updated 3 years ago
• humio / security_monitoring
  ☆41Updated 2 years ago
• tomstryhn / Active-Directory-Unknown-SID
  A small guide on Unknown/Orphaned SIDs and some PowerShell tools to help you get rid of them.
  ☆16Updated 3 years ago
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆26Updated last year
• secgroundzero / KQL_Reference_Manual
  ☆42Updated 4 years ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆70Updated 5 months ago
• dwmetz / PSHero
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆36Updated last year