guerreroag12's Stars
A-poc/RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
tsale/EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
haxxm0nkey/azhunt
Azure AD (Entra ID) enumeration tool. Find related domains and tenant information in a simple way.
vectra-ai-research/Halberd
Halberd : Multi-Cloud Attack Tool
PaperMtn/slack-watchman
Slack enumeration and exposed secrets detection tool
A-poc/BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
mrwadams/stride-gpt
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
BushidoUK/Ransomware-Tool-Matrix
A resource containing all the tools each ransomware gangs uses
Abjuri5t/IOC-Cartographer_TLP-CLEAR
PacktPublishing/Automating-Security-Detection-Engineering
Automating Security Detection Engineering, published by Packt
shauntdergrigorian/splunkqueries
A list of Splunk queries that I've collected and used over time.
DavidWells/markdown-magic
💫 Automatically format markdown files via comment blocks using source code, external data & custom transforms.
palantir/osquery-configuration
A repository for using osquery for incident detection and response
wealthsimple/odef
This is a public template repository for the Open Detection Engineering Framework
poona/exercises-malware-analysis-and-detection-engineering
Holds the exercise samples used in the book "Malware Analysis and Detection Engineering" - https://www.amazon.com/dp/1484261925
invictus-ir/aws-cheatsheet
A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
0x4D31/detection-and-response-pipeline
✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines. 👷 🏗
bgenev/impulse-xdr
Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.
splunk/attack_data
A repository of curated datasets from various attacks
splunk/docker-splunk
Splunk Docker GitHub Repository
ARPSyndicate/puncia
The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer.
SigmaHQ/pySigma
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
0x4D31/awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
LearningKijo/SecurityResearcher-Note
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
alphasoc/flightsim
A utility to safely generate malicious network traffic patterns and evaluate controls.
splunk/security_content
Splunk Security Content
palantir/alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
olafhartong/sysmon-modular
A repository of sysmon configuration modules
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing