johnlockie

johnlockie's Stars

• gchq/CyberChef

  The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

  Language:JavaScript29.8k3959963.3k

• BloodHoundAD/BloodHound

  Six Degrees of Domain Admin

  Language:PowerShell10k3785121.7k

• hslatman/awesome-threat-intelligence

  A curated list of Awesome Threat Intelligence resources

  8.3k568321.5k

• mandiant/flare-vm

  A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

  Language:PowerShell6.8k202515934

• arkime/arkime

  Arkime is an open source, large scale, full packet capturing, indexing, and database system.

  Language:JavaScript6.5k3511.4k1k

• MISP/MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  Language:PHP5.5k2826.7k1.4k

• trustedsec/unicorn

  Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

  Language:Python3.8k231143817

• vanhoefm/krackattacks-scripts

  Language:C3.4k222102768

• offensive-security/exploitdb-bin-sploits

  The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb-bin-sploits

  1.8k2088530

• nsacyber/Windows-Secure-Host-Baseline

  Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber

  Language:HTML1.6k21062286

• certsocietegenerale/fame

  FAME Automates Malware Evaluation

  Language:Python8765697169

• theori-io/pwnjs

  A Javascript library for browser exploitation

  Language:JavaScript875454108

• ciscocsirt/GOSINT

  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).

  Language:JavaScript5374528104

• sirensolutions/kibi

  PLEASE READ: Kibi is now "Siren Investigate", part of the Siren Platform. This code repository is only provided to facilitate code review and integration by Siren customers and cannot be successfully compiled. The code also requires Siren Federate to be installed in Elasticsearch.

  Language:JavaScript4969592111

• spender-sandbox/cuckoo-modified

  Modified edition of cuckoo

  Language:Python39571352178

• SupportIntelligence/Icewater

  16,432 Free Yara rules created by

  Language:YARA38236058

• buguroo/cuckooautoinstall

  Auto Installer Script for Cuckoo Sandbox

  Language:Shell16534760

• egaus/MaliciousMacroBot

  Language:Python150221627

• RamadhanAmizudin/python-icap-yara

  An ICAP Server with yara scanner for URL and content.

  Language:Python586113

• wmetcalf/clam-punch

  Messing around with clamav sigs

  Language:Python271344

• Kafeine/public

  19802

• cbcommunity/cbapi-examples

  Repository for all cbapi example scripts

  Language:Python161027

• avuko/randori

  Randori: Like Aiki. With a couple of Dans under its belt.

  Language:C14200

• graylog-labs/graylog-contentpack-cisco-catalyst

  Graylog content pack for Cisco Catalyst devices

  912612

• EmergingThreats/cuckoo

  Cuckoo Sandbox main repository

  Language:Python4801