Pinned Repositories
companies-hiring-security-remote
This repo is meant to be a list of companies that hire security people full remote.
NetProc
Correlates running processes to point-in-time network traffic for triage analysis of Windows hosts.
sysmon2splunk
The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
velociraptor-docs
Documentation site for Velociraptor
VelociraptorArtifacts
VPCFlowTH
Splunk dashboard to support analysis of VPC Flow logs from AWS
WSL2overAnyConnect
These instructions will allow a user to maintain Internet connectivity in WSL2 after using Cisco AnyConnect.
companies-hiring-security-remote
This repo is meant to be a list of companies that hire security people full remote.
velociraptor-docs
Documentation site for Velociraptor
chrisdfir's Repositories
chrisdfir/sysmon2splunk
The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
chrisdfir/WSL2overAnyConnect
These instructions will allow a user to maintain Internet connectivity in WSL2 after using Cisco AnyConnect.
chrisdfir/VPCFlowTH
Splunk dashboard to support analysis of VPC Flow logs from AWS
chrisdfir/companies-hiring-security-remote
This repo is meant to be a list of companies that hire security people full remote.
chrisdfir/NetProc
Correlates running processes to point-in-time network traffic for triage analysis of Windows hosts.
chrisdfir/velociraptor-docs
Documentation site for Velociraptor
chrisdfir/VelociraptorArtifacts