Alternatives and similar repositories for ttp-bench

Users that are interested in ttp-bench are comparing it to the libraries listed below

• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated this week
• antitree / seccomp-diff
  ☆85Updated this week
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated last year
• 0x4D31 / santamon
  Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.
  ☆67Updated last month
• CrowdStrike / gofalcon
  Golang-based SDK to CrowdStrike's APIs
  ☆78Updated this week
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 10 months ago
• DataDog / workload-security-evaluator
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Updated last year
• runreveal / sigmalite
  ☆52Updated 3 weeks ago
• Permiso-io-tools / SkyScalpel
  ☆47Updated last year
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆119Updated 2 weeks ago
• ReversecLabs / IceKube
  ☆183Updated 8 months ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆19Updated 4 years ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆31Updated 2 years ago
• KatTraxler / gcpdocs
  Repository to archive GCP Documentation for local use
  ☆16Updated 11 months ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 5 months ago
• nianticlabs / modron
  Modron - Cloud security compliance
  ☆34Updated last year
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆44Updated 2 years ago
• madhuakula / spotter
  Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…
  ☆69Updated 3 months ago
• google / container-explorer
  ☆93Updated 2 months ago
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆74Updated 3 years ago
• telophasehq / go-ocsf
  ☆75Updated 2 months ago
• Permiso-io-tools / cloudtail
  ☆31Updated this week
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆60Updated last year
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆75Updated last year
• Aqua-Nautilus / TrailShark
  ☆53Updated last year
• mchmarny / s3cme
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆104Updated last year
• abdullahgarcia / kubernetes-for-soc
  kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…
  ☆57Updated 2 years ago
• containerscrew / rootisnaked
  Simple root privilege escalation detection using eBPF 🐝
  ☆35Updated 3 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆26Updated 3 weeks ago
• mercari / gcp-sa-key-checker
  A recon tool for GCP Service Account Keys that requires no permissions
  ☆25Updated 8 months ago