crooksec's Stars
danielmiessler/fabric
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
drk1wi/Modlishka
Modlishka. Reverse Proxy.
clong/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
OTRF/ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
its-a-feature/Mythic
A collaborative, multi-platform, red teaming framework
optiv/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
microsoft/Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
dyne/tomb
the Crypto Undertaker
palantir/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response
demisto/content
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!
med0x2e/SigFlip
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.
rasta-mouse/ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
mitre-attack/attack-scripts
Scripts and a (future) library to improve users' interactions with the ATT&CK content
SynologyOpenSource/synology-csi
ruzickap/packer-templates
Scripts and Templates used for generating Vagrant images
mitre-attack/attack-datasources
This content is analysis and research of the data sources currently listed in ATT&CK.
kubernetes-sigs/cluster-api-provider-vsphere
opencybersecurityalliance/stix-shifter
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
kh4sh3i/Ransomware-Samples
Small collection of Ransomware organized by family.
DefensiveOrigins/APT-Lab-Terraform
Purple Teaming Attack & Hunt Lab - Terraform
PaloAltoNetworks/terraform-templates
This repo contains Terraform templates to deploy infrastructure on AWS and Azure and to secure them using the Palo Alto Networks Next Generation Firewalls
MahmoudZohdy/Process-Injection-Techniques
Various Process Injection Techniques
keyboardcrunch/sentinelone-queries
Repository of SentinelOne Deep Visibility queries.
InQuest/ThreatKB
Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
jeffsf/pyDE1
Controller for the Decent Espresso DE1
Kappa-Dev/ReGraph
Tool for building graph-based hierarchical knowledge representation systems
Kirtar22/ATTACK-Threat_Intel
Graph Representation of MITRE ATT&CK's CTI data
vmapps/attack2neo
Import Mitre Att&ck into Neo4j database
splunk/dsp-plugins-sdk
Write custom functions for Splunk Data Stream Processor
PaloAltoNetworks/terraform-iac-lab
Infrastructure as Code lab using Terraform and GCP