Alternatives and similar repositories for SME

Users that are interested in SME are comparing it to the libraries listed below

• nccgroup / nmap-nse-vulnerability-scripts
  NMAP Vulnerability Scanning Scripts
  ☆627Updated 3 years ago
• darkquasar / AzureHunter
  A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
  ☆791Updated 3 years ago
• zeronetworks / BlueHound
  BlueHound - pinpoint the security issues that actually matter
  ☆756Updated 2 years ago
• ScarredMonk / SysmonSimulator
  Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…
  ☆861Updated 4 years ago
• mandiant / Mandiant-Azure-AD-Investigator
  ☆646Updated 2 years ago
• JSCU-NL / logging-essentials
  A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.
  ☆291Updated 4 years ago
• cisagov / untitledgoosetool
  Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in…
  ☆944Updated 2 weeks ago
• mdecrevoisier / Microsoft-eventlog-mindmap
  Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
  ☆1,090Updated 2 months ago
• cisagov / bad-practices
  CISA's catalog of bad practices that are exceptionally risky.
  ☆210Updated last month
• CrowdStrike / CRT
  Contact: CRT@crowdstrike.com
  ☆747Updated 2 years ago
• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆298Updated 2 months ago
• mamun-sec / dfirt
  Collect information of Windows PC when doing incident response
  ☆253Updated 2 years ago
• GossiTheDog / ThreatHunting
  Tools for hunting for threats.
  ☆599Updated 8 months ago
• Diverto / nse-log4shell
  Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)
  ☆352Updated 4 years ago
• nsacyber / Mitigating-Obsolete-TLS
  Guidance for mitigating obsolete Transport Layer Security configurations. #nsacyber
  ☆271Updated 4 years ago
• ukncsc / lme
  Logging Made Easy
  ☆709Updated 2 years ago
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,122Updated 3 years ago
• blackhillsinfosec / EventLogging
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆488Updated last year
• punk-security / smbeagle
  SMBeagle - Fileshare auditing tool.
  ☆743Updated 2 months ago
• PlumHound / PlumHound
  Bloodhound Reporting for Blue and Purple Teams
  ☆1,262Updated 2 months ago
• microsoft / SecCon-Framework
  Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s …
  ☆283Updated 3 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆119Updated last year
• guardsight / gsvsoc_cirt-playbook-battle-cards
  Cyber Incident Response Team Playbook Battle Cards
  ☆426Updated last year
• Neo23x0 / BlueLedger
  A list of my personal projects
  ☆177Updated 3 years ago
• T0pCyber / hawk
  Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
  ☆918Updated 10 months ago
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆726Updated 3 years ago
• NextronSystems / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆556Updated last week
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆77Updated 11 months ago
• fox-it / dissect
  Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…
  ☆1,058Updated 2 months ago
• AndrewRathbun / DFIRMindMaps
  A repository of DFIR-related Mind Maps geared towards the visual learners!
  ☆549Updated 3 years ago