Pinned Repositories
CTFd-Downloader
Download all CTFd challenges and files offline
detection-validation
Detection rule validation
forward-bash-history-to-syslog
Forward Bash History to Syslog Server
gRPC-Remote-Traffic-Capture
Remote trafffic caputre using GRPC and golang
jitterg
Generate C2 dataset with custom jitter
LogRhythmOne
Controle Multiple LogRhythm SIEMs Alert and Cases from a Single API
Microsoft-Defender-Alert-API-Integration
Microsoft Defender Alert API Integration
persistence_diff
Diff Defender Persistence Locations
Qradar-Offenses-Jupyter-Notebook
Analyze Qradar Offense Using Jupyter Notebook
yaa
yaa - yaml search for humans
alwashali's Repositories
alwashali/detection-validation
Detection rule validation
alwashali/yaa
yaa - yaml search for humans
alwashali/persistence_diff
Diff Defender Persistence Locations
alwashali/forward-bash-history-to-syslog
Forward Bash History to Syslog Server
alwashali/LogRhythmOne
Controle Multiple LogRhythm SIEMs Alert and Cases from a Single API
alwashali/Microsoft-Defender-Alert-API-Integration
Microsoft Defender Alert API Integration
alwashali/gRPC-Remote-Traffic-Capture
Remote trafffic caputre using GRPC and golang
alwashali/jitterg
Generate C2 dataset with custom jitter
alwashali/Qradar-Offenses-Jupyter-Notebook
Analyze Qradar Offense Using Jupyter Notebook
alwashali/Loki-Notebook
Loki Jupyter Notebook
alwashali/Malware-Traffic-Analysis-Zeek-Dataset
Zeek logs of all malware-traffic-analysis.net PCAPs from 2013 to 08-2021
alwashali/detection-rules
Rules for Elastic Security's detection engine
alwashali/EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
alwashali/elephant
Cache like elephant
alwashali/gologrhythm
Go API Client for LogRhythm SIEM
alwashali/Graph-API
Test Microsoft Graph API Endpoints
alwashali/hackdefend.github.io
alwashali/Hood-session-labs-
alwashali/jekyll-now
Build a Jekyll blog in minutes, without touching the command line.
alwashali/library
Collection of original report and metadata files that are used by ORKL
alwashali/LogRhythm-Smart-Response-Webhook-Plugin
Sending alarm id to a webhook as a trigger to initiate a workflow
alwashali/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
alwashali/secure-golang-coding-workshop
Demo app to demonstrate security mechanism implementations
alwashali/Security-Operaiton-Threat-Hunting-workshop-slides
alwashali/sigma
Generic Signature Format for SIEM Systems
alwashali/SimpleGoHTTPServer
alwashali/Splunk-Workshop-Slides
alwashali/sysmon-modular
A repository of sysmon configuration modules
alwashali/Useful-IR-Commands
Useful Powershell commands I use during IR triage
alwashali/velociraptor
Digging Deeper....