Pinned Repositories
Red-Team-AD-GOAD
Pentesting - game of active directory
BLUE-TEAM-Detection-Engineering-awesome
A list of useful Detection Engineering-related resources.
BLUE-TEAM-ONE-LINERS
You didn't think I'd go and leave the blue team out, right?
BLUE-TEAM-PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00
Blue-Team-SIGMA-HQ
Generic Signature Format for SIEM Systems
Blue-Team-SIGMA-Red-Canary-2022
A repository of my own Sigma detection rules.
BLUE-TEAM-YARA-CyberThreatIntel
Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
DECEPTION-awesome-honeypots
an awesome list of honeypot resources
DFIR-APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
DFIR-awesome-incident-response
A curated list of tools for incident response
kr3tu's Repositories
kr3tu/DFIR-hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
kr3tu/DFIR-O365-Extractor-Suite
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
kr3tu/DECEPTION-awesome-honeypots
an awesome list of honeypot resources
kr3tu/PURPLE-TEAM-linux-purplelabs
This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.
kr3tu/MALWARE-ANAL-capa
The FLARE team's open-source tool to identify capabilities in executable files.
kr3tu/RED-TEAM-chisel
A fast TCP/UDP tunnel over HTTP
kr3tu/RED-TEAM-Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
kr3tu/MALWARE-ANAL-hollows_hunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
kr3tu/RED-TEAM-commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
kr3tu/DFIR-EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
kr3tu/RED-TEAM-Tools
Tools and Techniques for Red Team / Penetration Testing
kr3tu/REVERSE-ENGINEERING
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
kr3tu/MALWARE-ANAL-Process-Hollowing
Great explanation of Process Hollowing (a Technique often used in Malware)
kr3tu/BLUE-TEAM-YARA-CyberThreatIntel
Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
kr3tu/RED-TEAM-Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
kr3tu/BLUE-TEAM-PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00
kr3tu/RED-TEAM-PROCESS-INJ-wanderer
An open-source process injection enumeration tool written in C#
kr3tu/IR-Playbooks-SOCIETE
Incident Response Methodologies 2022
kr3tu/DFIR-LINUX-Forensics
Everything related to Linux Forensics
kr3tu/BLUE-TEAM-ONE-LINERS
You didn't think I'd go and leave the blue team out, right?
kr3tu/RED-TEAM-Atomic-Red-Canary
Small and highly portable detection tests based on MITRE's ATT&CK.
kr3tu/RED-TEAM-awesome-web-security
🐶 A curated list of Web Security materials and resources.
kr3tu/RED-TEAM-AD-Mindmap
Orange Cyberdefense mindmaps
kr3tu/DFIR-awesome-incident-response
A curated list of tools for incident response
kr3tu/BLUE-TEAM-Detection-Engineering-awesome
A list of useful Detection Engineering-related resources.
kr3tu/Blue-Team-SIGMA-HQ
Generic Signature Format for SIEM Systems
kr3tu/RED-TEAM-OSCP-cheatsheet
OSCP Guide
kr3tu/Blue-Team-SIGMA-Red-Canary-2022
A repository of my own Sigma detection rules.
kr3tu/Purple-Team-AWS-Adversary-Emulation
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
kr3tu/RED-TEAM-WEB-APP-PENTEST
A OWASP Based Checklist With 500+ Test Cases