BernaldoPenasAntelo

BernaldoPenasAntelo's Stars

• corelight/phantom-playbooks

  Language:Python84

• corelight/zeek-openvpn

  A Zeek OpenVPN protocol analyzer plugin.

  Language:JavaScript7

• ComodoSecurity/openedr

  Open EDR public repository

  Language:C++2.3k455

• HKcyberstark/wazuh-ecs

  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat

  275

• bammv/sguil

  Sguil client for NSM

  Language:Tcl21573

• limbenjamin/nTimetools

  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes

  Language:C457

• MicrosoftDocs/sysinternals

  Content for sysinternals.com

  484260

• SECFORCE/Tunna

  Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.

  Language:Python1.2k282

• grapheneX/grapheneX

  Automated System Hardening Framework

  Language:Python96884

• floe/tuxblet

  Language:Shell272

• robcowart/synesis_lite_suricata

  Suricata IDS/IPS log analytics using the Elastic Stack.

  Language:Shell23792

• OTRF/OSSEM

  Open Source Security Events Metadata (OSSEM)

  Language:Python1.2k215

• defenxor/dsiem

  Security event correlation engine for ELK stack

  Language:Go435101

• endgameinc/eqllib

  Language:Python15846

• imamimam/EVTX-ATTACK-SAMPLES-

  41

• redcanaryco/atomic-red-team

  Small and highly portable detection tests based on MITRE's ATT&CK.

  Language:C10k2.8k

• ThreatHuntingProject/ThreatHunting

  An informational repo about hunting for adversaries in your IT environment.

  1.7k377

• olafhartong/sysmon-modular

  A repository of sysmon configuration modules

  Language:PowerShell2.7k595

• Kirtar22/Litmus_Test

  Detecting ATT&CK techniques & tactics for Linux

  Language:Roff25755

• sametsazak/sysmon

  Sysmon and wazuh integration with Sigma sysmon rules [updated]

  6215

• Yara-Rules/rules

  Repository of yara rules

  Language:YARA4.2k1k

• sbousseaden/EVTX-ATTACK-SAMPLES

  Windows Events Attack Samples

  Language:HTML2.3k406