maikroservice's Stars
rizinorg/cutter
Free and Open Source Reverse Engineering Platform powered by rizin
apple/pkl
A configuration as code language with rich validation and tooling.
google/grr
GRR Rapid Response: remote live forensics for incident response
ionuttbara/windows-defender-remover
A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Windows 11.
Pennyw0rth/NetExec
The Network Execution Tool
mitre-attack/attack-navigator
Web app that provides basic navigation and annotation of ATT&CK matrices
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Sysinternals/SysmonForLinux
log2timeline/plaso
Super timeline all the things
WADComs/WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
SecurityRiskAdvisors/VECTR
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
c3c/ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
counteractive/incident-response-plan-template
A concise, directive, specific, flexible, and free incident response plan template
ZeroMemoryEx/Amsi-Killer
Lifetime AMSI bypass
winsecurity/Offensive-Rust
ocatak/malware_api_class
Malware dataset for security researchers, data scientists. Public malware dataset generated by Cuckoo Sandbox based on Windows OS API calls analysis for cyber security researchers
pathtofile/SealighterTI
Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider
socfortress/CoPilot
SOCFortress CoPilot
opensearch-project/sql
Query your data using familiar SQL or intuitive Piped Processing Language (PPL)
reidjs/markdown-tweet-scheduler
Schedule daily tweets from markdown files in your repo, posted via github actions.
secure-cake/rapid-endpoint-investigations
Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
splunk/salo
Synthetic Adversarial Log Objects: A Framework for synthentic log generation
branchnetconsulting/wazuh-tools
Useful scripts for those administering Wazuh
theflakes/sigma_to_wazuh
Convert Sigma rules to Wazuh rules
13ihsan92/Security-Blue-Team
This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, deployment, rules, integration, and fine tune.
0xbad53c/wazuh-detection-rules
Our collection of Wazuh detection rules for our Offense Lab
snoopgodlinux/system
Official system repository of SnoopGod Linux OS
cybrpete/wazuh-hSOC
Building a hSOC with Wazuh in VirtualBox
steffenfritz/wazuh-gtfobins
A rule set for Wazuh to detect live-off-the-land techniques on Linux and Unix systems.
navein-kumar/wazuh_rules1