cyb3rmik3
Cyber Resilience & Intelligence Manager | SecOps, Threat Intelligence & DFIR | Microsoft Security MVP
Alpha BankGreece
Pinned Repositories
awesome-detection-engineer
Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools, logging configuration and best practices, event log references, resources, labs, data manipulation online tools, blogs, newsletters, good reads, books, trainings, podcasts, videos and twitter/x accounts.
bsidesath2021
References used to prepare and deliver presentation "Cyber resilience: Awareness is not enough" at Security BSides Athens 2021.
cyb3rmik3
GitHub landing page repo
DFIR-Notes
Cheat sheet on memory forensics using various tools such as volatility.
Hunting-Lists
A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
MaltegoCE
Notes and comments regarding Maltego CE (community edition) and relevant available transformations for free.
MDE-DFIR-Resources
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
presentations
A repository for notes and references of presentations.
cyb3rmik3's Repositories
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
cyb3rmik3/MDE-DFIR-Resources
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
cyb3rmik3/Hunting-Lists
A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
cyb3rmik3/cyb3rmik3
GitHub landing page repo
cyb3rmik3/DFIR-Notes
Cheat sheet on memory forensics using various tools such as volatility.
cyb3rmik3/MaltegoCE
Notes and comments regarding Maltego CE (community edition) and relevant available transformations for free.
cyb3rmik3/Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
cyb3rmik3/presentations
A repository for notes and references of presentations.
cyb3rmik3/awesome-detection-engineer
Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools, logging configuration and best practices, event log references, resources, labs, data manipulation online tools, blogs, newsletters, good reads, books, trainings, podcasts, videos and twitter/x accounts.
cyb3rmik3/Open-Source-Threat-Intel-Feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
cyb3rmik3/TheBarn
A description of DFIR lab setup through experience/notes/courses
cyb3rmik3/bsidesath2021
References used to prepare and deliver presentation "Cyber resilience: Awareness is not enough" at Security BSides Athens 2021.
cyb3rmik3/PGPKey
Interested in sending something confidential? You may drop me a line at michalis -at- michalos.net using this PGP key or encrypt any file and forward it.
cyb3rmik3/azure-security-docs
Public sync with private azure-security-docs-pr repo
cyb3rmik3/defender-docs
cyb3rmik3/Hunting-Queries-Detection-Rules-1
KQL Queries. Microsoft Defender, Microsoft Sentinel
cyb3rmik3/misp2sentinel
MISP to Sentinel integration
cyb3rmik3/Scripts