zdhenard42 / SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations for security professionals.
☆350Updated 2 months ago
Alternatives and similar repositories for SOC-Multitool:
Users that are interested in SOC-Multitool are comparing it to the libraries listed below
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆239Updated 3 weeks ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆663Updated 2 months ago
- CLI tools for forensic investigation of Windows artifacts☆327Updated 5 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆559Updated last month
- Tools for simulating threats☆183Updated last year
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆611Updated 9 months ago
- ☆173Updated last year
- MISP Playbooks☆194Updated 2 months ago
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆188Updated 9 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆184Updated 3 months ago
- Purple Team Exercise Framework☆693Updated last year
- Cyber Incident Response Team Playbook Battle Cards☆373Updated 11 months ago
- Repository resource for threat hunter☆158Updated 6 years ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆391Updated 3 months ago
- A curated list of Awesome Threat Intelligence Blogs☆389Updated 2 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆244Updated 11 months ago
- This is a collection of threat detection rules / rules engines that I have come across.☆284Updated 11 months ago
- Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.☆480Updated 4 months ago
- MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).☆394Updated 6 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆196Updated 9 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆277Updated last week
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆137Updated 2 weeks ago
- Practical Windows Forensics Training☆656Updated last year
- Playbooks for SOC Analysts☆444Updated 2 years ago
- Map tracking ransomware, by OCD World Watch team☆464Updated last month
- Documentation and scripts to properly enable Windows event logs.☆601Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆280Updated 7 months ago
- Repository of attack and defensive information for Business Email Compromise investigations☆250Updated 2 months ago
- Some Threat Hunting queries useful for blue teamers☆125Updated 2 years ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆153Updated 4 months ago