a complete course in SOC tier1,notes slides and codes
-
Updated
Jun 9, 2024 - PowerShell
a complete course in SOC tier1,notes slides and codes
Convert Microsoft's driver blocklist to a EDR detection hash list for unsupported operating systems (eg. Win 7,8)
A PowerShell script for rapid initial incident response data collection on a potentially breached Windows system.
Add a description, image, and links to the blueteam-tools topic page so that developers can more easily learn about it.
To associate your repository with the blueteam-tools topic, visit your repo's landing page and select "manage topics."