Security lists for SOC detections
-
Updated
May 23, 2024 - PowerShell
Security lists for SOC detections
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
The all-in-one browser extension for offensive security professionals 🛠
User-agent Fuzzing Library. This repository holds data of all the user agents in the `user_agents.json` file, which can be used directly with any tool that can parse json format.
A curated list of tools and resources that I use daily as a Purple-Team operator.
The repository is a valuable resource for individuals looking to enhance their knowledge and skills in cybersecurity. It provides in-depth materials and guides for various cybersecurity domains.
Monitoring Stack Overflow Enterprise for exposed secrets
Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
Purpleteam scripts simulation & Detection - trigger events for SOC detections
A collection of sources of documentation, as well as field best practices, to build/run a SOC
IT Security library
Bloodhound for Blue and Purple Teams
Hunting queries and detections
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
All-In-One: Purple Teaming Exercises with Open-Source Tools
Provides various Windows Server Active Directory (AD) security-focused reports.
Practical Windows Forensics Training
Home Lab involving AD Domain Controller, Domain Joined Windows Machine, Firewall with IDS/IPS, all feeding event logs to an EDR and Security Monitoring solutions, The objective of the project is learn how to detect, respond and protect against emerging threats and to observe attack patterns by emulating attacks against Virtualized Endpoints.
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Add a description, image, and links to the purpleteam topic page so that developers can more easily learn about it.
To associate your repository with the purpleteam topic, visit your repo's landing page and select "manage topics."