Cyb3rSn0rlax

Cyb3rSn0rlax's Stars

• blaCCkHatHacEEkr/PENTESTING-BIBLE

  articles

  12.9k683232.3k

• BishopFox/sliver

  Adversary Emulation Framework

  Language:Go8.6k1507451.1k

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python8.4k3456032.2k

• SwiftOnSecurity/sysmon-config

  Sysmon configuration file template with default high-quality event tracing

  4.8k356981.7k

• geohot/qira

  QEMU Interactive Runtime Analyser

  Language:C4k191110469

• CyberMonitor/APT_CyberCriminal_Campagin_Collections

  APT & CyberCriminal Campaign Collection

  Language:YARA3.7k46090938

• hasherezade/pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  Language:C++3.1k10292434

• netbiosX/Checklists

  Red Teaming & Pentesting checklists for various engagements

  2.5k771508

• OTRF/Security-Datasets

  Re-play Security Events

  Language:PowerShell1.6k9337239

• nshalabi/SysmonTools

  Utilities for Sysmon

  1.5k9420205

• vxunderground/VXUG-Papers

  Research code & papers from members of vx-underground.

  Language:C1.1k780233

• Flangvik/TeamFiltration

  TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

  Language:C#1.1k1139122

• DFIRKuiper/Kuiper

  Digital Forensics Investigation Platform

  Language:JavaScript7713471111

• threathunters-io/laurel

  Transform Linux Audit logs for SIEM usage

  Language:Rust712177456

• LuemmelSec/Pentest-Tools-Collection

  Language:PowerShell650180111

• AndrewRathbun/DFIRMindMaps

  A repository of DFIR-related Mind Maps geared towards the visual learners!

  51431067

• deepinstinct/Lsass-Shtinkering

  Language:C++3775141

• RansomLook/RansomLook

  Yet another Ransomware gang tracker

  Language:Python333189060

• jsecurity101/MSRPC-to-ATTACK

  A repository that maps commonly used attacks using MSRPC protocols to ATT&CK

  31310040

• rivitna/Malware

  Language:Python310221547

• airbus-cert/Invoke-Bof

  Load any Beacon Object File using Powershell!

  Language:PowerShell24511034

• TimMisiak/WinDbgCookbook

  This is a repo for small, useful scripts and extensions

  Language:JavaScript24114022

• PayloadSecurity/Sandbox_Scryer

  Language:C#2238225

• dr4k0nia/tooling-playground

  A collection of small scripts and tools for deobfuscation and malware analysis.

  Language:C#65203

• kazuminn/vulsbeat

  Vuls Beater for Elasticsearch - connecting vuls

  Language:Go17211

• j91321/MISP2memcached

  Load MISP events into memcached for log enrichment using logstash

  Language:Python12224

• barvhaim/mordor2ecs

  Windows log to ECS format for Mordor large dataset

  Language:Python6401

• Cyb3rSn0rlax/PCAP-ATTACK

  PCAP Samples for Different Post Exploitation Techniques

  3000

• itrobertson/ElasticsearchWatcher

  These are an example of typical Watcher Alerts, by design the automation component will fill in the variables. For example, you can choose to use BRO logs or allow the algorithm to chose for you.

  Language:Python3303

• silence-is-best/howtos

  How to's

  220