ThatDFIRguy's Stars
3CORESec/testmynids.org
A website and framework for testing NIDS detection
sans-blue-team/DeepBlueCLI
certsocietegenerale/IRM-deprecated
Incident Response Methodologies
cyberdefenders/DetectionLabELK
DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
clong/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
Purp1eW0lf/Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
PlumHound/PlumHound
Bloodhound Reporting for Blue and Purple Teams
TheWorldOfPC/Windows11-Debloat-Privacy-Guide
payloadbox/sql-injection-payload-list
🎯 SQL Injection Payload List
nshalabi/ATTACK-Tools
Utilities for MITRE™ ATT&CK
mitre-attack/bzar
A set of Zeek scripts to detect ATT&CK techniques.
iptv-org/iptv
Collection of publicly available IPTV channels from all over the world
certsocietegenerale/FIR
Fast Incident Response
cyb3rfox/Aurora-Incident-Response
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
outflanknl/RedELK
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
TheresAFewConors/Sooty
The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
brianreitz/awesome-blueteam
A list of resources to build a information security team.
philhagen/sof-elk
Configuration files for the SOF-ELK VM
cisagov/Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
dfirtrack/dfirtrack
DFIRTrack - The Incident Response Tracking Application
thalesgroup-cert/Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
TheHive-Project/TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
freeCodeCamp/freeCodeCamp
freeCodeCamp.org's open-source codebase and curriculum. Learn to code for free.