forked from A-poc/BlueTeam-Tools
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbacklog
48 lines (48 loc) · 1.27 KB
/
backlog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
Blue Team Tips
https://twitter.com/embee_research/status/1614871485931458560
Network Discovery and Mapping
-
Vulnerability Management
Qualys
Lynis
HackerOne
BugCrowd
Security Monitoring
https://github.com/x0rz/phishing_catcher
SysmonSearch
OSquery + Kolide Fleet
DNS mining pools https://github.com/stamparm/maltrail/blob/master/trails/static/suspicious/crypto_mining.txt | https://www.nextron-systems.com/2021/10/24/monero-mining-pool-fqdns/
https://github.com/stamparm/maltrail
Splunk
ElastAlert
Threat Tools and Techniques
https://github.com/WithSecureLabs/chainsaw
https://github.com/AzureAD/Azure-AD-Incident-Response-PowerShell-Module
https://github.com/keraattin/EmailAnalyzer
Threat Intelligence
ThreatCrowd
OTX AlienVault
Incident Response Planning
https://github.com/meirwah/awesome-incident-response
Business Continuity Plan
Insider Threat Response Plan
Physical Security Plan
Malware Detection and Analysis
YARA
Cuckoo Sandbox
Radare2
dnSpy https://github.com/dnSpy/dnSpy
Data Recovery
-
Digital Forensics
https://github.com/e-m-b-a/emba
Volatility
Security Awareness Training
KnowBe4
Wombat Security
Imersivelabs
Communication and Collaboration
https://twitter.com/malmoeb
ArcSight SIEM
LogRhythm SIEM
AlienVault USM SIEM