Pinned Repositories
awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
awesome-incident-response
A curated list of tools for incident response
CAPEv2
Malware Configuration And Payload Extraction
cryptit
Encryption has never been so easy! glhf
CVE-2024-6387-Vulnerability-Checker
This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, and ports. The script can also read addresses from a file.
decwindbx
A sort of a toolkit to decrypt Dropbox Windows DBX files
digital-forensics-lab
Free hands-on digital forensics labs for students and faculty
Final-Project
Soil Moisture Detection Using Digital Images.
Linux-Process-Scanner
This script scans all Linux processes, uses an Virus Total API and determining if Linux processes running on you Linux devices are malicious or not.
joao-hg-marques's Repositories
joao-hg-marques/Final-Project
Soil Moisture Detection Using Digital Images.
joao-hg-marques/Linux-Process-Scanner
This script scans all Linux processes, uses an Virus Total API and determining if Linux processes running on you Linux devices are malicious or not.
joao-hg-marques/awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
joao-hg-marques/awesome-incident-response
A curated list of tools for incident response
joao-hg-marques/CAPEv2
Malware Configuration And Payload Extraction
joao-hg-marques/CVE-2024-6387-Vulnerability-Checker
This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, and ports. The script can also read addresses from a file.
joao-hg-marques/digital-forensics-lab
Free hands-on digital forensics labs for students and faculty
joao-hg-marques/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
joao-hg-marques/ForensicMiner
A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
joao-hg-marques/Havoc-C2
The Havoc Framework
joao-hg-marques/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
joao-hg-marques/ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
joao-hg-marques/impacket
Impacket is a collection of Python classes for working with network protocols.
joao-hg-marques/Linux-Incident-Response
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
joao-hg-marques/MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
joao-hg-marques/malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
joao-hg-marques/mimikatz
A little tool to play with Windows security
joao-hg-marques/Networking-Project
Networking project with three branches located in different areas.
joao-hg-marques/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
joao-hg-marques/Petrol-Station
Petrol Station simulation
joao-hg-marques/ransomwatch
a ransomware-group observatory 🧅👹
joao-hg-marques/Rapid7-Labs
Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence, research and analytics.
joao-hg-marques/RecentFileCacheParser
Parses RecentFileCacheParser.bcf files
joao-hg-marques/RedCsharp
Collection of C# projects. Useful for pentesting and redteaming.
joao-hg-marques/Safe-Edit-batch-and-bash-files
Commands files written in linux and batch that allows to edit files, doing first a backup
joao-hg-marques/Sentinel-SOC-101
Content and collateral for the Microsoft Sentinel SOC 101 series
joao-hg-marques/uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
joao-hg-marques/velociraptor
Digging Deeper....
joao-hg-marques/Velociraptor-Audit
Collection of Audit and Compliance related VQL artifacts
joao-hg-marques/velociraptor-setup
This script will speed up velociraptor configurations using Terraform