cygnetix's Stars
dreadl0ck/maltego
Maltego
CrowdStrike/falcon-query-assets
Welcome to the Falcon Query Assets GitHub page.
superseriousbusiness/gotosocial
Fast, fun, small ActivityPub server.
alexverboon/PSMDATP
PowerShell Module for managing Microsoft Defender Advanced Threat Protection
glennzw/maltegogo
Maltego library in Go
oauth2-proxy/oauth2-proxy
A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
vors/jupyter-powershell
PowerShell language kernel for Jupyter
etsangsplk/splunk-jupyter
Analyse your Splunk data from a Jupyter Notebook, as a Pandas Dataframe.
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
O365/python-o365
A simple python library to interact with Microsoft Graph and Office 365 API
infosecn1nja/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
IRATEAU/sam-bot
Bot to create MISP events from data in Slack
google/stenographer
Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com
tonybaloney/St2Client
A StackStorm API client for C#.NET including a PowerShell module
demisto/COPS
Collaborative Open Playbook Standard
andygrunwald/go-jira
Go client library for Atlassian Jira
andrewstuart/servicenow
A golang client for ServiceNow
carbonblack/cb-event-forwarder
Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
ThreatHuntingProject/ThreatHunting
An informational repo about hunting for adversaries in your IT environment.
nsacyber/Event-Forwarding-Guidance
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
dstaulcu/TA-Sigma-Searches
A Splunk app with saved reports derived from Sigma rules
TryCatchHCF/DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
hire-vladimir/SA-cim_vladiator
Data validator agains Splunk Common Information Model (CIM)
Cyb3rWard0g/Invoke-ATTACKAPI
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
hslatman/awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
aptnotes/data
APTnotes data
SigmaHQ/sigma
Main Sigma Rule Repository
ciscocsirt/GOSINT
The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).