ablescia

@nocommentlab Bari

Pinned Repositories

ablescia
Config files for my GitHub profile.
00
Ansible-StealthSysmon
A custom Sysmon deployment to be undetectable by malware enumeration.
2 1 00
CIS-Auditor-Windows
A Windows CIS benchmark policy compliance auditor
Language:PowerShell0 0 00
CVE-2021-41773
Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773
Language:Python0 0 00
CVE-2022-21882
win32k LPE
Language:C++0 0 00
CVE-2022-22536
SAP memory pipes(MPI) desynchronization vulnerability CVE-2022-22536.
Language:Python0 0 00
DFIR-Tools
This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
00
eqllib
Language:Python0 0 00
fibratus
Adversary tradecraft detection, protection, and hunting
Language:Go00
ThreatHunting-Workbench
My personal Threat Hunting Workbench
Language:Python2 1 10

ablescia's Repositories

ablescia/Ansible-StealthSysmon
A custom Sysmon deployment to be undetectable by malware enumeration.
2 1 00
ablescia/ThreatHunting-Workbench
My personal Threat Hunting Workbench
Language:Python2 1 10
ablescia/ablescia
Config files for my GitHub profile.
00
ablescia/CIS-Auditor-Windows
A Windows CIS benchmark policy compliance auditor
Language:PowerShell0 0 00
ablescia/CVE-2021-41773
Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773
Language:Python0 0 00
ablescia/CVE-2022-21882
win32k LPE
Language:C++0 0 00
ablescia/CVE-2022-22536
SAP memory pipes(MPI) desynchronization vulnerability CVE-2022-22536.
Language:Python0 0 00
ablescia/DFIR-Tools
This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
00
ablescia/eqllib
Language:Python0 0 00
ablescia/fibratus
Adversary tradecraft detection, protection, and hunting
Language:Go00
ablescia/KillDefender
A small POC to make defender useless by removing its token privileges and lowering the token integrity
Language:C++0 0 00
ablescia/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00 and @dottor_morte
Language:PowerShell0 0 00
ablescia/Process-Injection-Techniques
Various Process Injection Techniques
Language:C++0 0 00
ablescia/sigma
Generic Signature Format for SIEM Systems
Language:Python0 0 00
ablescia/SpoolFool
Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
Language:C#0 0 00
ablescia/YaraMemoryScanner
Simple PowerShell script to enable process scanning with Yara.
Language:PowerShell0 0 00
ablescia/velociraptor
Digging Deeper....
Language:Go0 0
ablescia/velociraptor-docs
Documentation site for Velociraptor
Language:HTML
ablescia/Windows.PersistenceSniper
The PersistenceSniper Velociraptor Artifact
1 0

ablescia

Pinned Repositories

ablescia

Ansible-StealthSysmon

CIS-Auditor-Windows

CVE-2021-41773

CVE-2022-21882

CVE-2022-22536

DFIR-Tools

eqllib

fibratus

ThreatHunting-Workbench

ablescia's Repositories

ablescia/Ansible-StealthSysmon

ablescia/ThreatHunting-Workbench

ablescia/ablescia

ablescia/CIS-Auditor-Windows

ablescia/CVE-2021-41773

ablescia/CVE-2022-21882

ablescia/CVE-2022-22536

ablescia/DFIR-Tools

ablescia/eqllib

ablescia/fibratus

ablescia/KillDefender

ablescia/PersistenceSniper

ablescia/Process-Injection-Techniques

ablescia/sigma

ablescia/SpoolFool

ablescia/YaraMemoryScanner

ablescia/velociraptor

ablescia/velociraptor-docs

ablescia/Windows.PersistenceSniper