CyberSecOps

Pinned Repositories

awesome-malware-analysis
Defund the Police.
1 1 00
aws-log4j-mitigations
Mitigations (AWS WAF, Lambda@Edge/CloudFront Functions) to implement on AWS to attempt to prevent log4j exploitation.
Language:JavaScript0 0 01
AWSGoat
AWSGoat : A Damn Vulnerable AWS Infrastructure
Language:JavaScript1 0 00
cset
Cybersecurity Evaluation Tool
Language:TSQL1 0 00
log4j-affected-db
2 1 00
log4j-finder
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228)
Language:Python1 1 00
log4j-scanner
log4j-scanner is a project derived from other members of the open-source community by CISA's Rapid Action Force team to help organizations identify potentially vulnerable web services affected by the log4j vulnerabilities.
Language:Java1 1 00
log4jscanner
Language:Go0 0 00
SolarWinds-Sunburst-Solorigate-Supernova-FireEye
Resources related to the SolarWinds supply chain breach, connected to the FireEye breach
5 2 02
ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
Language:Python12 0 00

CyberSecOps's Repositories

CyberSecOps/Hunting-Queries-Detection-Rules
Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
10
CyberSecOps/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
CyberSecOps/Awesome-BEC
Repository of attack and defensive information for Business Email Compromise investigations
CyberSecOps/awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️
0 0
CyberSecOps/Azure-MG-Sub-Governance-Reporting
AzGovViz (Azure Governance Visualizer) is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM and Microsoft Graph APIs. From the collected data AzGovViz provides visibility on your HierarchyMap, creates a TenantSummary, creates DefinitionInsights and builds granular Sco
CyberSecOps/BlackStone
Pentesting Reporting Tool
Language:CSS0 0
CyberSecOps/BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
CyberSecOps/Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
CyberSecOps/cloud-vulnerabilities
CyberSecOps/decider
A web application that assists network defenders, analysts, and researcher in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.
Language:CSS0 0
CyberSecOps/dnstwist
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
CyberSecOps/Episode-Notes
Slides, notes and more related to Atomics on a Friday
CyberSecOps/ESXiArgs-Recover
A tool to recover from ESXiArgs ransomware
CyberSecOps/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Language:Go0 0
CyberSecOps/KustQueryLanguage_kql
Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
0 0
CyberSecOps/learning-malware-analysis
This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware.
CyberSecOps/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Azure AD.
CyberSecOps/Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
CyberSecOps/pdftoflashcard
A tool to extract text from a pdf document, use AI to generate Q&As and then export this as a table that can be used to import to flashcard tools such as anki, goodnotes or quizlet.
Language:Python0 0
CyberSecOps/pe-bear
Portable Executable reversing tool with a friendly GUI
CyberSecOps/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00 and @dottor_morte
CyberSecOps/redteam-research
Collection of PoC and offensive techniques used by the BlackArrow Red Team
CyberSecOps/RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
CyberSecOps/RToolZ
A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.
CyberSecOps/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
CyberSecOps/security-champion-framework
The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
CyberSecOps/SentinelAutomationModules
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
CyberSecOps/serviceDetector
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
CyberSecOps/SharpSCCM
A C# utility for interacting with SCCM
Language:C#0 0
CyberSecOps/TelemetrySource