heshamelgebaly

heshamelgebaly's Stars

• josh-morin/qradar

  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.

  Language:Python7318

• gsivapavan/Power-BI

  This repository contains Excel data and Power BI Dash Boards

  1

• P4T12ICK/Sigma-Rule-Repository

  Sigma Detection Rule Repository

  8419

• Xboarder56/QRCE-Rules

  These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.

  4821

• heshamelgebaly/awesome-forensics

  A curated list of awesome forensic analysis tools and resources

  1

• Velocidex/velociraptor

  Digging Deeper....

  Language:Go2.8k467

• TryCatchHCF/DumpsterFire

  "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

  Language:Python974149

• NextronSystems/APTSimulator

  A toolset to make a system look as if it was the victim of an APT attack

  Language:Batchfile2.4k422

• cugu/awesome-forensics

  A curated list of awesome forensic analysis tools and resources

  3.7k598

• samratashok/nishang

  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

  Language:PowerShell8.5k2.4k

• ThreatConnect-Inc/threatconnect-playbooks

  Community driven repository of Playbooks and Apps for ThreatConnect.

  Language:Python6768

• ibmresilient/resilient-community-apps

  Source code for IBM SOAR Apps that are available on our App Exchange

  Language:ReScript8796

• ibmresilient/resilient-scripts

  Example scripts and rules for use in Resilient playbooks.

  Language:Python3319

• googleprojectzero/sandbox-attacksurface-analysis-tools

  Set of tools to analyze Windows sandboxes for exposed attack surface.

  Language:C#2k421

• OTRF/ThreatHunter-Playbook

  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

  Language:Python3.9k798

• davehull/Kansa

  A Powershell incident response framework

  Language:PowerShell1.5k265

• LOLBAS-Project/LOLBAS

  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

  Language:XSLT6.7k959

• mitre/cti

  Cyber Threat Intelligence Repository expressed in STIX 2.0

  1.7k404

• swannman/ircapabilities

  Incident Response Hierarchy of Needs

  42741

• derv82/wifite2

  Rewrite of the popular wireless network auditor, "wifite"

  Language:Python6.1k1.3k

• OWASP/Python-Honeypot

  OWASP Honeypot, Automated Deception Framework.

  Language:Python413137

• obsidianforensics/hindsight

  Web browser forensics for Google Chrome/Chromium

  Language:Python1k135

• ly4k/SpoolFool

  Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)

  Language:C#754156

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python7.8k2.1k

• defendthehoneypot/Client-GPOs

  GPOs for client systems

  427

• OWASP/ZSC

  OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/

  Language:Python638215

• suntopo/ExcelERP

  Language:Batchfile1

• rupeshaveva/ExcelERP

  ERP which serves the needs of instumetational insustry.

  Language:C#11

• Chudry/Xerror

  fully automated pentesting tool

  Language:CSS496109

• Zeyad-Azima/Offensive-Resources

  A Huge Learning Resources with Labs For Offensive Security Players

  862199