Pinned Repositories
aws-tools-for-powershell
The AWS Tools for PowerShell lets developers and administrators manage their AWS services from the PowerShell scripting environment.
CnC-detection
Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
CVE-2019-19781
DFIR notes for Citrix ADC (NetScaler) appliances vulnerable to CVE-2019-19781
CyberThreatHunting
A collection of resources for Threat Hunters
DNS-tracer
Tracing the source of internal DNS requests with Microsoft Event Trace Log (ETL) files
import-configurations
Import configurations for Firefly III
joy
A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
Parse-and-Enrich
sjosz-KAPE_mft
Logstash config that uploads CSV file containing parsed MFT with MFTEcmd
DfirJos's Repositories
DfirJos/CnC-detection
Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
DfirJos/DNS-tracer
Tracing the source of internal DNS requests with Microsoft Event Trace Log (ETL) files
DfirJos/sjosz-KAPE_mft
Logstash config that uploads CSV file containing parsed MFT with MFTEcmd
DfirJos/aws-tools-for-powershell
The AWS Tools for PowerShell lets developers and administrators manage their AWS services from the PowerShell scripting environment.
DfirJos/CVE-2019-19781
DFIR notes for Citrix ADC (NetScaler) appliances vulnerable to CVE-2019-19781
DfirJos/CyberThreatHunting
A collection of resources for Threat Hunters
DfirJos/import-configurations
Import configurations for Firefly III
DfirJos/joy
A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
DfirJos/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
DfirJos/Parse-and-Enrich
DfirJos/malleable-c2
Cobalt Strike Malleable C2 Design and Reference Guide
DfirJos/openssh-portable
Portable OpenSSH, all Win32-OpenSSH releases and wiki are managed at https://github.com/powershell/Win32-OpenSSH
DfirJos/RECmd
Command line access to the Registry
DfirJos/RegistryPlugins
DfirJos/sysmon-config
Sysmon configuration file template with default high-quality event tracing
DfirJos/velociraptor
Digging Deeper....
DfirJos/velociraptor-docs
Documentation site for Velociraptor