Pinned Repositories
1_CDP
01 Practical DevSecOps
AbstractionMaps
atc-react
A knowledge base of actionable Incident Response techniques
atomic-threat-coverage
Actionable analytics designed to combat threats
Captain
Userland API monitor for threat hunting
CCXDigger
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Demos
Repo Filled With Follow Along Guides
elastic-stack-docker-part-one
Getting up and running with Elastic Stack on Docker-Compose
EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
Junos_Space
Junos Space troubleshooting notes
fanavarr's Repositories
fanavarr/EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
fanavarr/1_CDP
01 Practical DevSecOps
fanavarr/AbstractionMaps
fanavarr/atc-react
A knowledge base of actionable Incident Response techniques
fanavarr/atomic-threat-coverage
Actionable analytics designed to combat threats
fanavarr/Captain
Userland API monitor for threat hunting
fanavarr/CCXDigger
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
fanavarr/Demos
Repo Filled With Follow Along Guides
fanavarr/elastic-stack-docker-part-one
Getting up and running with Elastic Stack on Docker-Compose
fanavarr/EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
fanavarr/ETWProcessMon2
ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
fanavarr/fanavarr
fanavarr/honeybadger
fanavarr/Incident-Response-Powershell
PowerShell Digital Forensics & Incident Response Scripts.
fanavarr/ParamSpider
Mining parameters from dark corners of Web Archives
fanavarr/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
fanavarr/Rules-wazuh
Wazuh/OSSEC Rules
fanavarr/sigma_to_wazuh
Convert Sigma rules to Wazuh rules
fanavarr/sysmon-cheatsheet
All sysmon event types and their fields explained
fanavarr/sysmon-config
Sysmon configuration file template with default high-quality event tracing
fanavarr/sysmon_wazuh_samples
Sysmon and wazuh integration with Sigma sysmon rules [updated]
fanavarr/Threat-Hunting-Notebook
Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes
fanavarr/Tools
fanavarr/truffleHog
Searches through git repositories for high entropy strings and secrets, digging deep into commit history
fanavarr/velociraptor-docs
Documentation site for Velociraptor
fanavarr/velociraptor-to-timesketch
fanavarr/wazuh-detection-rules
Our collection of Wazuh detection rules for our Offense Lab
fanavarr/Wazuh-Rules
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
fanavarr/webapp
Sample Web App with Maven for Jenkins Demo
fanavarr/xcyclopedia
Encyclopedia for Executables