DFIR-jwedd

awesome-lists

Awesome Security lists for SOC/CERT/CTI

ThreatHunting-Keywords

Awesome list of keywords and artifacts for Threat Hunting sessions

tht

Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science

ChopChopGo

Rapidly Search and Hunt through Linux Forensics Artifacts

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.

macos-UnifiedLogs

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

invoke-atomicredteam

Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.

blue-team-wiki

Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries

sigma

Main Sigma Rule Repository

detection-rules

dumpit-linux

Memory acquisition for Linux that makes sense.

shellen

:cherry_blossom: Interactive shellcoding environment to easily craft shellcodes