robertstucke's Stars
sroberts/awesome-iocs
A collection of sources of indicators of compromise.
FalconForceTeam/FalconFriday
Hunting queries and detections
hausec/PowerZure
PowerShell framework to assess Azure security
mitre-attack/bzar
A set of Zeek scripts to detect ATT&CK techniques.
endgameinc/RTA
dirkjanm/ROADtools
A collection of Azure AD/Entra tools for offensive and defensive security purposes
nshalabi/ATTACK-Tools
Utilities for MITRE™ ATT&CK
mitre/cascade-server
CASCADE Server
center-for-threat-informed-defense/security-stack-mappings
🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
nccgroup/azucar
Security auditing tool for Azure environments
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
Cyb3r-Monk/Threat-Hunting-and-Detection
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
TheHive-Project/awesome
A curated list of awesome things related to TheHive & Cortex
center-for-threat-informed-defense/attack-control-framework-mappings
🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
mitre-attack/attack-arsenal
A collection of red team and adversary emulation resources developed and released by MITRE.
cyberark/SkyArk
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
ThreatHuntingProject/ThreatHunting
An informational repo about hunting for adversaries in your IT environment.
TencentARC/GFPGAN
GFPGAN aims at developing Practical Algorithms for Real-world Face Restoration.
TheAlgorithms/Python
All Algorithms implemented in Python
OTRF/ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
RPISEC/Malware
Course materials for Malware Analysis by RPISEC
nikolaydubina/go-recipes
🦩 Tools for Go projects
a13xp0p0v/linux-kernel-defence-map
Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and defence technologies
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
mitre-attack/attack-scripts
Scripts and a (future) library to improve users' interactions with the ATT&CK content
OTRF/OSSEM-DM
OSSEM Detection Model
ForbiddenProgrammer/conti-pentester-guide-leak
Leaked pentesting manuals given to Conti ransomware crooks
ansible/ansible
Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to cloud management, in a language that approaches plain English, using SSH, with no agents to install on remote systems. https://docs.ansible.com.
OTRF/OSSEM
Open Source Security Events Metadata (OSSEM)