Pinned Repositories
gsuite-login-geoip
A script to analyze geographic GSuite Login activity
slackbot
A small collection of Slack-connected tools
rhq
Recon Hunt Queries
thehive-slack-webhook
A simple Lambda function for delivering The Hive webhooks to Slack
web-traffic-generator
A quick and dirty HTTP/S "organic" traffic generator.
Cortex-Analyzers
Cortex Analyzers Repository
TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
ecapuano's Repositories
ecapuano/gsuite-login-geoip
A script to analyze geographic GSuite Login activity
ecapuano/PhishReporter-Outlook-Add-In
PhishReporter Outlook Add-In in an Outlook Add-In that allows users to report phishing e-mails to a specific e-mail address for further processing/investigation. Fork of https://github.com/MSAdministrator/PhishReporter-Outlook-Add-In
ecapuano/DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
ecapuano/Graylog_Sysmon
Advanced Threat detection Configurations for Graylog
ecapuano/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
ecapuano/password_cracking_rules
One rule to crack all passwords. or atleast we hope so.
ecapuano/RITAA
Rudimentary Intelligence and Threat Analysis Application
ecapuano/analyzeMFT
ecapuano/ansible-honeypots
ecapuano/Ares
Python botnet and backdoor
ecapuano/brawl-public-game-001
Data from a BRAWL Automated Adversary Emulation Exercise
ecapuano/caldera
The CALDERA automated adversary emulation system
ecapuano/Cortex-Analyzers
Cortex Analyzers Repository
ecapuano/cowrie
Cowrie SSH/Telnet Honeypot
ecapuano/Defoe
Website defacement detection system based on machine learning
ecapuano/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
ecapuano/dionaea
Home of the dionaea honeypot
ecapuano/hubot-grafana
Query Grafana dashboards.
ecapuano/iris-web
Incident Response collaborative platform
ecapuano/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE. There is also documentation available in Markdown format
ecapuano/Logstash-Configs
Contains log parsers for Logstash for many systems and applications. Also contains many methods of augmenting logs.
ecapuano/MISP
MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)
ecapuano/SELKS
A Suricata based IDS/IPS distro
ecapuano/send
File Sharing Experiment
ecapuano/SlackShell
PowerShell to Slack C2
ecapuano/sso-wall-of-shame
A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.
ecapuano/timesketch
Collaborative forensic timeline analysis
ecapuano/velociraptor-docs
Documentation site for Velociraptor
ecapuano/velociraptor-web
Velociraptor's documentation site.
ecapuano/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response