famsedition's Stars
Escape-Technologies/API-Threat-Matrix
A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
SafeBreach-Labs/WindowsDowndate
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
fox-it/dissect
Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (part of NCC Group).
mikeroyal/Open-Source-Security-Guide
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
Orange-Cyberdefense/arsenal
Arsenal is just a quick inventory and launcher for hacking programs
referefref/honeydet
Signature based honeypot detector tool written in Golang
UnaPibaGeek/honeypots-detection
Nuclei templates for honeypots detection.
YARAHQ/yara-forge
Automated YARA Rule Standardization and Quality Assurance Tool
securityjoes/MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
referefref/canarytokendetector
Detect and remove the presence of canary tokens
kunai-project/kunai
Threat-hunting tool for Linux
WithSecureLabs/LinuxCatScale
Incident Response collection and processing scripts with automated reporting scripts
Bert-JanP/Open-Source-Threat-Intel-Feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
jamf/aftermath
Aftermath is a free macOS IR framework
duckduckgo/tracker-radar
Data set of top third party web domains with rich metadata about them
ozpingux/BasicLinuxForensicScript
Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
BeRoot00/Forensic-scripts
a2o/snoopy
Snoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.
pwnlandia/mhn
Modern Honey Network
FortiPower/PowerFGT
PowerShell module to manage Fortinet (FortiGate) Firewall
Yamato-Security/EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
alwashali/detection-validation
Detection rule validation
DataDog/HASH
HASH (HTTP Agnostic Software Honeypot)
joeavanzato/Trawler
PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.
horsicq/Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
qeeqbox/honeypots
30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)
MarkBaggett/srum-dump
A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.
redcanaryco/mac-monitor
Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displaying them graphically, with an expansive feature set designed to reduce noise.
magicsword-io/LOLDrivers
Living Off The Land Drivers
Drew-Alleman/DataSurgeon
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text