maxvarm

Pinned Repositories

awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
8.1k 562 311.5k
ebpf-docker-lsm
Monitor and block specified processes and network connections with this docker-aware KRSI (BPF+LSM) security tool
Language:C1 1 00
falco-attack-navigator
Language:Python0 1 00
linux-siem-audit-configs
Auditd, OSquery, and Falco low-volume process and filesystem auditing configs built for SIEM ingestion
2 1 00
memfd-process-hide
Hide process execution from auditd or dynamically load remote binaries using memfd+fexecve syscalls
Language:C0 1 00
splunk-ta-abusech
Collection of modular inputs to fetch data from AbuseCH MalwareBazaar, URLhaus, and ThreatFox
Language:Python10
thm-writeup-apiwizardsbreach
Writeup for APIWizards Breach room in TryHackMe
2 1 00
windows-siem-checklist
Language:PowerShell1 1 00
petFind
Lits project, PetFinder
Language:CSS01

maxvarm's Repositories

maxvarm/linux-siem-audit-configs
Auditd, OSquery, and Falco low-volume process and filesystem auditing configs built for SIEM ingestion
2 1 00
maxvarm/thm-writeup-apiwizardsbreach
Writeup for APIWizards Breach room in TryHackMe
2 1 00
maxvarm/ebpf-docker-lsm
Monitor and block specified processes and network connections with this docker-aware KRSI (BPF+LSM) security tool
Language:C1 1 00
maxvarm/splunk-ta-abusech
Collection of modular inputs to fetch data from AbuseCH MalwareBazaar, URLhaus, and ThreatFox
Language:Python10
maxvarm/windows-siem-checklist
Language:PowerShell1 1 00
maxvarm/falco-attack-navigator
Language:Python0 1 00
maxvarm/memfd-process-hide
Hide process execution from auditd or dynamically load remote binaries using memfd+fexecve syscalls
Language:C0 1 00