dewiestr

Domains of interest: DFIR, Threat hunting, Malware Analysis, Threat Intel.

Pinned Repositories

Ansible-Cuckoo
This is a Ansible script for building a ready to go Cuckoo Sandbox server.
Language:Python00
barcode
Small Code39 barcode generator script.
Language:Python00
calamity
A script to assist in processing forensic RAM captures for malware triage
Language:Shell00
cbapi-python
Carbon Black API - Python language bindings
Language:Python00
code-snippets
Code Snippets and scripts collection
Language:Python01
cuckoo
Cuckoo Sandbox main repository
Language:JavaScript00
cuckoo-autoinstall
Automated install scripts for Cuckoo sandbox
Language:Shell0 2 00
get-ioc-repos
Script to get popular, good reputation indicators
00
irma-brain
IRMA brain
Language:Python00
otx_misp
Imports Alienvault OTX pulses to a MISP instance
Language:Jupyter Notebook10

dewiestr's Repositories

dewiestr/otx_misp
Imports Alienvault OTX pulses to a MISP instance
Language:Jupyter Notebook10
dewiestr/Ansible-Cuckoo
This is a Ansible script for building a ready to go Cuckoo Sandbox server.
Language:Python00
dewiestr/barcode
Small Code39 barcode generator script.
Language:Python00
dewiestr/calamity
A script to assist in processing forensic RAM captures for malware triage
Language:Shell00
dewiestr/cbapi-python
Carbon Black API - Python language bindings
Language:Python00
dewiestr/code-snippets
Code Snippets and scripts collection
Language:Python01
dewiestr/cuckoo
Cuckoo Sandbox main repository
Language:JavaScript00
dewiestr/cuckoo-autoinstall
Automated install scripts for Cuckoo sandbox
Language:Shell0 2 00
dewiestr/get-ioc-repos
Script to get popular, good reputation indicators
00
dewiestr/irma-brain
IRMA brain
Language:Python00
dewiestr/kirjuri
Kirjuri is a web application for managing cases and physical forensic evidence items.
Language:JavaScript
dewiestr/metasploit-framework
Metasploit Framework
Language:Ruby
dewiestr/MISP
MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)
Language:PHP
dewiestr/misp-docker
Docker container for MISP
Language:Shell
dewiestr/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
Language:Python
dewiestr/MISP2CbR
Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
Language:Python
dewiestr/monitor
The new Cuckoo Monitor.
Language:POV-Ray SDL
dewiestr/PyMISP
Python library using the MISP Rest API
dewiestr/rules
Repository of yara rules
Language:Shell
dewiestr/SEC599
SEC599 supporting GitHub repository
Language:Shell
dewiestr/The-SOC-Shop
Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
Language:Shell
dewiestr/viper
Binary analysis framework
Language:Python

dewiestr

Pinned Repositories

Ansible-Cuckoo

barcode

calamity

cbapi-python

code-snippets

cuckoo

cuckoo-autoinstall

get-ioc-repos

irma-brain

otx_misp

dewiestr's Repositories

dewiestr/otx_misp

dewiestr/Ansible-Cuckoo

dewiestr/barcode

dewiestr/calamity

dewiestr/cbapi-python

dewiestr/code-snippets

dewiestr/cuckoo

dewiestr/cuckoo-autoinstall

dewiestr/get-ioc-repos

dewiestr/irma-brain

dewiestr/kirjuri

dewiestr/metasploit-framework

dewiestr/MISP

dewiestr/misp-docker

dewiestr/misp-galaxy

dewiestr/MISP2CbR

dewiestr/monitor

dewiestr/PyMISP

dewiestr/rules

dewiestr/SEC599

dewiestr/The-SOC-Shop

dewiestr/viper