0xMo

0xMo's Stars

• HackingLZ/ExtractedDefender

  20530

• blackorbird/APT_REPORT

  Interesting APT Report Collection And Some Special IOC

  Language:Python2.3k503

• Baniur/Forensic-Artifacts

  Repository of forensic artifacts which are useful in real world and CTF investigations

  2

• Baniur/Writeups

  Write-ups for CTF-like, CyberSec training platforms (BTLO, CyberDefenders, Hack The Box Sherlocks)

  1

• blocklistproject/Lists

  Primary Block Lists

  Language:JavaScript3.5k327

• securityjoes/MasterParser

  MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs

  Language:PowerShell55455

• simsong/bulk_extractor

  This is the development tree. Production downloads are at:

  Language:C++1k184

• mikeroyal/Digital-Forensics-Guide

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

  Language:Python1.5k189

• center-for-threat-informed-defense/security-stack-mappings

  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

  Language:Python37664

• fs4xz/Threat-Hunting

  eCTHPv2 certification course provided by CyberHub sponsorship of the SAFCSP

  3

• beahunt3r/Windows-Hunting

  34393

• ine-labs/ThreatSeeker

  ThreatSeeker: Threat Hunting via Windows Event Logs

  Language:Python9410

• Yamato-Security/hayabusa

  Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

  Language:Rust2.1k183

• LetsDefend/incident-response-playbooks

  14930

• Sam0x90/CB-Threat-Hunting

  CarbonBlack EDR detection rules and response actions

  Language:HTML687

• cyb3rmik3/KQL-threat-hunting-queries

  A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

  48954

• tomwechsler/Active_Directory_Advanced_Threat_Hunting

  This repo is about Active Directory Advanced Threat Hunting

  Language:PowerShell47469

• codeyourweb/fastfinder

  Incident Response - Fast suspicious file finder

  Language:Go22528

• MHaggis/hunt-detect-prevent

  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.

  Language:PowerShell15744

• SoulSec/resource-threat-hunting

  Repository resource for threat hunter

  15732

• bluecapesecurity/PWF

  Practical Windows Forensics Training

  Language:PowerShell56898

• matro7sh/BypassAV

  This map lists the essential techniques to bypass anti-virus and EDR

  2.3k256

• 0xzeta/HowToHunt

  Tutorials and Things to Do while Hunting Vulnerability.

  1

• rabobank-cdc/DeTTECT

  Detect Tactics, Techniques & Combat Threats

  Language:SCSS2k333

• Bert-JanP/Hunting-Queries-Detection-Rules

  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

  Language:Python1.1k205

• MazX0p/WmiEye

  Language:C6

• Ignitetechnologies/Mindmap

  This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

  6.4k1.2k

• ihebski/A-Red-Teamer-diaries

  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

  1.7k302

• A-poc/BlueTeam-Tools

  Tools and Techniques for Blue Team / Incident Response

  2.6k392

• A-poc/RedTeam-Tools

  Tools and Techniques for Red Team / Penetration Testing

  5.5k759