atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

attackquizbot

Bot for learning MITRE ATT&CK

awesome-hacking-resources

A collection of hacking / penetration testing resources to make you better!

bro-cheatsheets

Bro Log Cheatsheets

credential-dumping

This cheatsheet is aimed at the Red Teamers to help them understand the fundamentals of Credential Dumping (Sub Technique of Credential Access) with examples. There are multiple ways to perform the same tasks

d3f0x0

Whom info

elastic-kibana

elastic-kibana with docker compose

h4cker

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

mstic-sysmon

Anything Sysmon related from the MSTIC R&D team

open-xp-rules

Открытый репозиторий с правилами на языке eXtraction and Processing (XP)

persistencesniper

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00

ransomware-simulator

Ransomware simulator written in Golang

siem-monkey

Chrome extension for SOC automations

sigma

Main Rule Repository

sources_feeds

suricata_rules

sysmon-config

Sysmon configuration file template with default high-quality event tracing

sysmon-modular

A repository of sysmon configuration modules

sysmon_scripts

sysmonvalidate

Validation configuration file for sysmon

vscode-xp-workspace

Автоматизированное рабочее пространство для использования расширения VSCode XP

zabbix-openvpn

zabbix_lsi_raid_monitoring

Monitoring raid status and disk status