Pinned Repositories
azucar
Security auditing tool for Azure environments
blocklist-ipsets
ipsets dynamically updated with firehol's update-ipsets.sh script
HAFNIUM-Microsoft-Exchange-0day
CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065
Halcyon-IDE
First IDE for Nmap Script (NSE) Development.
linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
Pentest-Toolkit
rules
Snort and Suricata Rules
TheWatchList
Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
tpotce
🍯 T-Pot - The All In One Honeypot Platform 🐝
windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
SCS Labs's Repositories
SCS-Labs/TheWatchList
Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
SCS-Labs/HAFNIUM-Microsoft-Exchange-0day
CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065
SCS-Labs/rules
Snort and Suricata Rules
SCS-Labs/blocklist-ipsets
ipsets dynamically updated with firehol's update-ipsets.sh script
SCS-Labs/Pentest-Toolkit
SCS-Labs/ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
SCS-Labs/ansible-role-sysmon
Ansible role for installing Sysmon with popular config files included.
SCS-Labs/arkime
Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.
SCS-Labs/atomic-threat-coverage
Actionable analytics designed to combat threats
SCS-Labs/Aurora-Incident-Response
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
SCS-Labs/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
SCS-Labs/cloudsploit
Cloud Security Posture Management (CSPM)
SCS-Labs/commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
SCS-Labs/Country-codes
SCS-Labs/elastic-reports
SCS-Labs/Empire
Empire is a PowerShell and Python 3.x post-exploitation framework.
SCS-Labs/goalert
Open source on-call scheduling, automated escalations, and notifications so you never miss a critical alert
SCS-Labs/Images
SCS-Labs/ipsets
SCS-Labs/iris
Iris is a highly configurable and flexible service for paging and messaging.
SCS-Labs/jok3r
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
SCS-Labs/oncall
Oncall is a calendar tool designed for scheduling and managing on-call shifts. It can be used as source of dynamic ownership info for paging systems like http://iris.claims.
SCS-Labs/ossec-sysmon
A Ruleset to enhance detection capabilities of Ossec using Sysmon
SCS-Labs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
SCS-Labs/ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
SCS-Labs/ScoutSuite
Multi-Cloud Security Auditing Tool
SCS-Labs/sigma
Generic Signature Format for SIEM Systems
SCS-Labs/Sysmon-for-Security
SCS-Labs/sysmon-modular
A repository of sysmon configuration modules
SCS-Labs/SysmonCommunityGuide
TrustedSec Sysinternals Sysmon Community Guide