Pinned Repositories
certsee
Query crt.sh and find associated infrastructure in Shodan based on certificate serial numbers
csvtoconfmd
Fork of csvtomd - modified to convert CSV files to Confluence Wiki table
CTF
Various CTF Write-Ups
CVE-2019-15043
POC scanner for the Grafana vulnerability CVE-2019-15043
jenkinspot
A python-based Jenkins Honeypot
Jira-CVE-2019-8451
POC to check for Jira instances vulnerable to CVE-2019-8451
MicrosoftSentinel-DocumentAnalyticsRules
A python script to help automate Microsoft Sentinel analytics rule documentation
MicrosoftSentinelStuff
Misc. content for Microsoft Sentinel
sentinel-dettect
Create a DeTT&CT techniques administration file from exported Microsoft Sentinel rules
yacng
Flask application that generates a random single-word code name for projects, incidents, etc.
h0ffayyy's Repositories
h0ffayyy/MicrosoftSentinelStuff
Misc. content for Microsoft Sentinel
h0ffayyy/CVE-2019-15043
POC scanner for the Grafana vulnerability CVE-2019-15043
h0ffayyy/MicrosoftSentinel-DocumentAnalyticsRules
A python script to help automate Microsoft Sentinel analytics rule documentation
h0ffayyy/Jira-CVE-2019-8451
POC to check for Jira instances vulnerable to CVE-2019-8451
h0ffayyy/sentinel-dettect
Create a DeTT&CT techniques administration file from exported Microsoft Sentinel rules
h0ffayyy/csvtoconfmd
Fork of csvtomd - modified to convert CSV files to Confluence Wiki table
h0ffayyy/jenkinspot
A python-based Jenkins Honeypot
h0ffayyy/sentinel-to-yaml
Convert Microsoft Sentinel rule templates to YAML
h0ffayyy/SentinelDomainMonitor
Use dnstwist to monitor for lookalike domains and send logs to Azure Log Analytics
h0ffayyy/APT-Ecosystem
This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map the connections inside the APT Ecosystem of Russia.
h0ffayyy/certsee
Query crt.sh and find associated infrastructure in Shodan based on certificate serial numbers
h0ffayyy/CTF
Various CTF Write-Ups
h0ffayyy/yacng
Flask application that generates a random single-word code name for projects, incidents, etc.
h0ffayyy/Awesome-SOAR
A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
h0ffayyy/Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
h0ffayyy/DocuSignMonitor-MicrosoftSentinel
h0ffayyy/ioc-test
h0ffayyy/mhn
Modern Honey Network
h0ffayyy/Microsoft-CopilotForSecurity-Content
h0ffayyy/MicrosoftSentinel-GreatHorn
h0ffayyy/MicrosoftSentinelReporter
h0ffayyy/okbrute
Script to test credentials against an Okta sign-in widget.
h0ffayyy/OllieBot
Ollie your personal Azure Sentinel assistent
h0ffayyy/openvasreporting
OpenVAS Reporting: Convert OpenVAS XML report files to reports
h0ffayyy/scripts
Misc. scripts I've created
h0ffayyy/Sentinel-Queries
Collection of KQL queries
h0ffayyy/tap
The TrustedSec Attack Platform is a reliable method for droppers on an infrastructure in order to ensure established connections to an organization.
h0ffayyy/terraform-stuff
Random collection of Terraform configs/modules/etc.
h0ffayyy/tracecat
😼 The open source alternative to Tines / Splunk SOAR. Build AI-assisted workflows, orchestrate alerts, and close cases fast.
h0ffayyy/vulnreport
Open-source pentesting management and automation platform by Salesforce Product Security