kubescape 是一个用于k8s风险分析、安全合规性、RBAC 可视化工具和图像漏洞扫描工具。
Tools and Techniques for Red Team / Penetration Testing
Automated Adversary Emulation Platform
翻译 - 自动化对手仿真
A repository of sysmon configuration modules
Windows Events Attack Samples
翻译 - Windows 事件攻击示例
Web app that provides basic navigation and annotation of ATT&CK matrices
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or maki...
翻译 - 在线资源可帮助您准备参加CNCF / Linux Foundation CKS 2020“ Kubernetes认证的安全专家”认证考试。随着时间的推移,这不太可能是最新的完整列表-如果在此处添加一些内容,请提出拉取请求。
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
翻译 - ☁️ :zap:云的粒度、可操作的对手仿真。
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
翻译 - 随机播放:安全堆栈的自动化平台
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
翻译 - 一个开放的对手仿真计划库,旨在使组织能够根据现实世界的TTP测试其防御。
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
翻译 - 事件响应流程和手册 |目标:将剧本映射到 MITRE 攻击技术
A collection of sources of documentation, as well as field best practices, to build/run a SOC
An Active Defense and EDR software to empower Blue Teams
翻译 - 主动防御和EDR软件可增强Blue Teams的能力
A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Utilities for MITRE™ ATT&CK
翻译 - MITER™ATT&CK的实用程序
Actionable analytics designed to combat threats
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.