ezaspy's Stars
aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
deviantony/docker-elk
The Elastic stack (ELK) powered by Docker and Compose.
Lissy93/personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
markmap/markmap
Build mindmaps with plain text
infobyte/faraday
Open Source Vulnerability Management Platform
DominicBreuker/pspy
Monitor linux processes without root permissions
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
onhexgroup/Conferences
Conference presentation slides
nitefood/asn
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
mrwadams/attackgen
AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident response scenarios based on user-selected threat actor groups and your organisation's details.
cipher387/python-for-OSINT-21-days
In this repository you will find sample code files for each day of the course "Python for OSINT. A 21-day course for beginners".
tclahr/uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
threathunters-io/laurel
Transform Linux Audit logs for SIEM usage
MarkBaggett/srum-dump
A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.
securityjoes/MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
mthcht/ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
wazuh/wazuh-dashboard-plugins
Plugins for Wazuh Dashboard
cyb3rmik3/MDE-DFIR-Resources
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
microsoft/ics-forensics-tools
Microsoft ICSpector (ICS Forensics Tools framework) is an open-source forensics framework that enables the analysis of Industrial PLC metadata and project files.
hevnsnt/Awesome_Incident_Response
Awesome Incident Response
tguard-soc-package/nusantara
anvilsecure/ulexecve
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
rpetrich/deciduous
App that simplifies building decision trees to model adverse scenarios
UncoderIO/Uncoder_IO
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
grahamhelton/USP
Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)
abdulshareef/DFIR-Resources
Some important DFIR Resources
AntoPorter/Intune-Remediations
I hope these Microsoft Intune Remediations inspire you to make your own!
EricZimmerman/Srum
JouniMi/TheDFIRThing
y-mehta/vulnalerts
Get new vulnerability alerts daily straight to your slack channel using GitHub Actions.