TannerFilip

TannerFilip's Stars

• gchq/CyberChef

  The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

  Language:JavaScript29.9k3951k3.3k

• rshipp/awesome-malware-analysis

  Defund the Police.

  12.2k704412.6k

• horsicq/Detect-It-Easy

  Program for determining types of files for Windows, Linux and MacOS.

  Language:JavaScript7.9k179147741

• meirwah/awesome-incident-response

  A curated list of tools for incident response

  7.8k464141.5k

• OpenCTI-Platform/opencti

  Open Cyber Threat Intelligence Platform

  Language:TypeScript6.6k1435.6k972

• geerlingguy/mac-dev-playbook

  Mac setup and configuration via Ansible.

  Language:Shell6.1k1581221.8k

• ionuttbara/windows-defender-remover

  A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Windows 11.

  Language:Batchfile4.6k52166307

• cugu/awesome-forensics

  ⭐️ A curated list of awesome forensic analysis tools and resources

  4.1k17610635

• Velocidex/velociraptor

  Digging Deeper....

  Language:Go3.1k741.2k501

• WithSecureLabs/chainsaw

  Rapidly Search and Hunt through Windows Forensic Artefacts

  Language:Rust3k55110271

• Yamato-Security/hayabusa

  Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

  Language:Rust2.4k41679209

• Purp1eW0lf/Blue-Team-Notes

  You didn't think I'd go and leave the blue team out, right?

  1.6k574241

• nsacyber/Mitigating-Web-Shells

  Guidance for mitigation web shells. #nsacyber

  Language:YARA970597204

• target/strelka

  Real-time, container-based file scanning at enterprise scale

  Language:Python8934296119

• Bert-JanP/Incident-Response-Powershell

  PowerShell Digital Forensics & Incident Response Scripts.

  Language:PowerShell54811578

• mitre-attack/attack-datasources

  This content is analysis and research of the data sources currently listed in ATT&CK.

  Language:Jupyter Notebook4073110105

• Squiblydoo/debloat

  A GUI and CLI tool for removing bloat from executables

  Language:Python357121328

• hevnsnt/Awesome_Incident_Response

  Awesome Incident Response

  Language:PowerShell26410018

• PaloAltoNetworks/Unit42-timely-threat-intel

  A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence.

  21751211

• pe3zx/crowdstrike-falcon-queries

  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon

  19513248

• bk-cs/rtr

  Real-time Response scripts and schema

  Language:PowerShell10717424

• kant2002/de4dot

  .NET deobfuscator and unpacker.

  Language:C#1057211

• Neo23x0/Loki2

  LOKI2 - Simple IOC and YARA Scanner

  Language:Rust84519

• sumeshi/evtx2es

  A library for fast parse & import of Windows Eventlogs into Elasticsearch.

  Language:Python837216

• curated-intel/MOVEit-Transfer

  A repository for tracking events related to the MOVEit Transfer Cl0p Campaign

  681604

• Squiblydoo/certReport

  A tool to support the reporting of Authenticode Certificates by reducing the effort on individuals to report.

  Language:Python27212

• vipyrsec/vipyrsec-deobfuscator

  Rewrapping FieryIceStickie's Deobfuscation Tools

  Language:Python91203

• 0xFFaraday/bspy

  Language:Python20

• import-pandas-as-numpy/chainsaw-rules

  A set of custom Chainsaw rules for event log threat hunting.

  20

• import-pandas-as-numpy/yara-rules

  Fringe useful rules that are mildly beneficial for the public domain.

  Language:YARA1100