Pinned Repositories
aks_tomcat_with_fluentbit_sidecar
Tomcat (openjdk11) Container w/ Fluent Bit as a side car to send telemetry from /usr/local/tomcat/logs to STDOUT via Fluent Bit where the AMA Daemon Set will then send the telemetry to ContainerLogV2
apache-logs
This is a clone from Ed Silva's Github (FluentBit). This is a very simple container used to send mock Apache Web Server access log activity to STDOUT. This container is used to demo different logging solutions via FluentBit, etc when it comes to containerized workloads.
Articles
awesome-incident-response
A curated list of tools for incident response
azure_dcr_json_generator
A dockerized solution to generate Azure Data Collection Rule (DCR) JSON Sample Files from unstructured log sources.
azure_iac
Azure :: Infrastructure as Code - Linux Syslog Collector via AMA and Log Analytics Workspace on Microsoft Azure
dfir_scripts
Various scripts to assist with conducting DFIR
gitlab_container
A GitLab implementation using Docker Compose and Self-Signed SSL Certificates w/ GitLab Runner in Kubernetes
LogAnalytics-Export-2-ADX
Export tables in a Log Analytics Workspace (LAW) to an Azure Data Explorer (ADX) Database (DB) via Event Hubs
splunk_2_adx
Python demo code to ingest data into and query from an ADX Database.
dcodev1702's Repositories
dcodev1702/LogAnalytics-Export-2-ADX
Export tables in a Log Analytics Workspace (LAW) to an Azure Data Explorer (ADX) Database (DB) via Event Hubs
dcodev1702/azure_iac
Azure :: Infrastructure as Code - Linux Syslog Collector via AMA and Log Analytics Workspace on Microsoft Azure
dcodev1702/dfir_scripts
Various scripts to assist with conducting DFIR
dcodev1702/gitlab_container
A GitLab implementation using Docker Compose and Self-Signed SSL Certificates w/ GitLab Runner in Kubernetes
dcodev1702/k3s_cluster_rancher_longhorn
K3S Cluster w/ Rancher and Longhorn -- Credit: Jim's Garage on YouTube
dcodev1702/splunk_2_adx
Python demo code to ingest data into and query from an ADX Database.
dcodev1702/aks_tomcat_with_fluentbit_sidecar
Tomcat (openjdk11) Container w/ Fluent Bit as a side car to send telemetry from /usr/local/tomcat/logs to STDOUT via Fluent Bit where the AMA Daemon Set will then send the telemetry to ContainerLogV2
dcodev1702/apache-logs
This is a clone from Ed Silva's Github (FluentBit). This is a very simple container used to send mock Apache Web Server access log activity to STDOUT. This container is used to demo different logging solutions via FluentBit, etc when it comes to containerized workloads.
dcodev1702/Articles
dcodev1702/Azure
All thing Microsoft Azure related
dcodev1702/azure_ama_logging
A repository focused on using AMA for various logging scenarios
dcodev1702/azure_apache2_law_dcr
Apache2 Access Log - Custom Log for Log Analytics via DCR API
dcodev1702/azure_asr_rules
A no frills script that will iterate over a resource group looking for Azure VMs to enable/disable ASR.
dcodev1702/azure_dcr_json_generator
A dockerized solution to generate Azure Data Collection Rule (DCR) JSON Sample Files from unstructured log sources.
dcodev1702/azure_monitoredObjects
Information how to setup Monitored Objects in Azure for on-premises Win 10/11 (AADJ/HAADH) Clients using the Azure Monitor Agent (AMA)
dcodev1702/big-bang-demo
dcodev1702/Blacksmith
Building environments to replicate small networks and deploy applications
dcodev1702/cisa_known_exploited_cves
CISA Known Exploited Vulnerabilities & Microsoft Sentinel
dcodev1702/container_basics
Basic Anatomy of a Linux Container taught by Liz Rice, Aqua Security.
dcodev1702/install_docker
A simple bash script to install the latest version of docker-compose
dcodev1702/k3s_bind9_dns_fluentbit_azure_log_ingest_api
A K3S Deployment of Bind9 DNS, Fluent-Bit configured for the [output] Azure Log Ingestion API
dcodev1702/linux_scripts
Various Linux Scripts I use from time to time
dcodev1702/MSFT_Sentinel
Microsoft Sentinel related material
dcodev1702/pihole_fluentbit_docker
Pi-Hole and Fluent Bit (w/ Azure Log Ingestion API) using Docker Compose
dcodev1702/RSyslog_Linux_Collector_AzureMonitorAgent
This repo serves as a (plaintext) solution for RSyslog Linux Collectors using Rocky Linux (RHEL Clone) and the Azure Monitor Agent (AMA) extension.
dcodev1702/sentinel_data
Test repo to pull in csv using KQL in Sentinel
dcodev1702/SentinelWorkbooks
Workbooks for Azure Sentinel
dcodev1702/terraform_proxmox_vm
Provision Proxmox VM's using Terraform
dcodev1702/ubun2004_xfce4
An Ubuntu 20.04 XFCE 4 Container that can be accessed via VNC
dcodev1702/windows_scripts
Various PowerShell scripts to enable auditing, Attack Surface Reduction (ASR), etc