conexioninversa
I have worked in important companies as a consultant specialized in Threat Hunting, Incident Response, Honeynets, Threat Intelligence and pen-testing.
BANKINGTarragona - Spain
Pinned Repositories
analyst-scripts
Scripts to analyze stuff
APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
awesome-incident-response
A curated list of tools for incident response
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
BitsParser
CDQR
The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux and MacOS devices
chainsaw
Rapidly Search and Hunt through Windows Event Logs
Incident-Response
Tools for Incident Response, CyberSecurity and Digital Forensics
WOPR
Globally distributed honeypots and HoneyNets IOCs and file reversing
conexioninversa's Repositories
conexioninversa/sysmon
Sysmon and wazuh integration with Sigma sysmon rules [updated]
conexioninversa/CyLR
CyLR - Live Response Collection Tool
conexioninversa/Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
conexioninversa/CSIRT-Collect
PowerShell script to collect memory and (triage) disk forensics
conexioninversa/smell
conexioninversa/Linux_DFIR_Scripts
conexioninversa/Parserator
Windows EVTX Analysis
conexioninversa/awesome-incident-response
A curated list of tools for incident response
conexioninversa/messageanalyzer-archive
Microsoft Message Analyzer EOL Archive
conexioninversa/CDQR
The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux and MacOS devices