carlokohan's Stars
shadps4-emu/shadPS4
PS4 emulator for Windows,Linux,MacOS
carlokohan/Graph-API-scripts
Python scripts that use Graph API
EricZimmerman/evtx
C# based evtx parser with lots of extras
acrono/cve-2024-6387-poc
32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
dafthack/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
thinkst/opencanary
Modular and decentralised honeypot
Veil-Framework/Veil
Veil 3.1.X (Check version info in Veil at runtime)
WithSecureLabs/chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
rootsecdev/Microsoft-Blue-Forest
Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
A-poc/BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
dionach/NtdsAudit
An Active Directory audit utility
microsoft/mdatp-xplat
Microsoft Defender for macOS/Linux - config samples, auxiliary tools
MichaelGrafnetter/DSInternals
Directory Services Internals (DSInternals) PowerShell Module and Framework
EricZimmerman/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
google/timesketch
Collaborative forensic timeline analysis
hashicorp/vault
A tool for secrets management, encryption as a service, and privileged access management
The-DFIR-Report/Sigma-Rules
Rules generated from our investigations.
google/fuzzing
Tutorials, examples, discussions, research proposals, and other resources related to fuzzing
twitter/the-algorithm
Source code for Twitter's Recommendation Algorithm
reprise99/Sentinel-Queries
Collection of KQL queries
cloudflare/cloudflared
Cloudflare Tunnel client (formerly Argo Tunnel)
MISP/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
VirusTotal/vt-public-crowdsourced-yara
Share your Yara rules with VirusTotal
blackhillsinfosec/play.backdoorsandbreaches.com
Dashboard for conducting Backdoors and Breaches sessions over Zoom.
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
gchq/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
swagitda/security-decision-trees-graphviz
Decision trees generated via Graphviz to inform pragmatic threat modelling.
thinkst/canarytokens
Canarytokens helps track activity and actions on your network.
Neo23x0/Loki
Loki - Simple IOC and YARA Scanner
hevnsnt/Awesome_Incident_Response
Awesome Incident Response