Pinned Repositories
AD-security-workshop
Resources for our Active Directory security workshops
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
APT_REPORT
Interesting apt report collection and some special ioc express
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
awesome_windows_logical_bugs
collect for learning cases
ImageDiff
Image comparation. Swift implementation of https://github.com/imgly/rembrandt.
duzvik's Repositories
duzvik/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
duzvik/APT_REPORT
Interesting apt report collection and some special ioc express
duzvik/awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
duzvik/Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
duzvik/Azure-Sentinel2Go
Azure Sentinel2Go is an open source project developed to expedite the deployment of an Azure Sentinel lab.
duzvik/azure_egress_nat
How to use an Ubuntu VM for egress
duzvik/AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
duzvik/chatgpt-for-cybersecurity-examples
duzvik/CyberThreatIntel
Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
duzvik/DetectionLabELK
DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
duzvik/EDRSandblast
duzvik/EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
duzvik/extension-examples
JupyterLab Extensions by Examples
duzvik/Fermion
Fermion, an electron wrapper for Frida & Monaco.
duzvik/GitHubPrivateRepoFileFetcher
http://blog.tyang.org/2017/05/19/deploying-arm-templates-with-artifacts-located-in-a-private-github-repository/
duzvik/HELK
The Hunting ELK
duzvik/Honey-Sessions
A tool for spoofing user sessions in active directory
duzvik/killProcessPOC
use aswArPot.sys to kill process
duzvik/notebooks
duzvik/Pentesting
Tricks for penetration testing
duzvik/physmem2profit
Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely
duzvik/project-freta
MSR Project Freta
duzvik/pypsrp
PowerShell Remoting Protocol for Python
duzvik/RedWarden
Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
duzvik/Research
Research indicators and detection rules
duzvik/Rubeus
Trying to tame the three-headed dog.
duzvik/Slides
Misc Threat Hunting Resources
duzvik/test
test
duzvik/test1
duzvik/WinPmem
The multi-platform memory acquisition tool.