NIST-to-Tech
purple-team-exercise-framework
NIST-to-Tech | purple-team-exercise-framework | |
---|---|---|
2 | 2 | |
104 | 546 | |
- | 3.8% | |
3.9 | 3.1 | |
4 months ago | 5 months ago | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
NIST-to-Tech
-
List of Open Source Security Tools
Reminds me a bit of a GitHub repo I started that maps closed and open source tools to the NIST CSF: https://github.com/mikeprivette/NIST-to-Tech
- Cyber security tools that combats phishing detection in emails
purple-team-exercise-framework
-
TIL Adversary Emulation is a subset Red Team but with focus on CTI. How it is executed in the industry in real world example?
For example, most of our customers include our scenario based component into SOWs because it's malleable, aligns best with the customer's tech stack, security controls, and engagement objectives. The idea is to remove the 'Adversary emulation constraints' introduced by frameworks like PTEF (Purple Team Exercise Framework) while ensuring we're still emulate a TA; known, or unknown.
- Purple Team Exercise Framework
What are some alternatives?
awesome-security-hardening - A collection of awesome security hardening guides, tools and other resources
LOLBAS - Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Application-Security-Engineer-Interview-Questions - Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
EnterprisePurpleTeaming - Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
PWF - Practical Windows Forensics Training
CS7038-Malware-Analysis - Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)
gitlab-watchman - Finding exposed secrets and personal data in GitLab
boobsnail - BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.
Firecrack - :fire: Firecrack pentest tools: Facebook hacking random attack, deface, admin finder, bing dorking:
PoW-Shield - Project dedicated to fight Layer 7 DDoS with proof of work, with an additional WAF and controller. Completed with full set of features and containerized for rapid and lightweight deployment.
toolkit - The essential toolkit for reversing, malware analysis, and cracking
infosec-jobs-com-salaries - A dataset of global salaries in InfoSec/Cybersecurity.