Pinned Repositories
BF-ELK
Burnham Forensics ELK Deployment Files
DeepBlueCLI
evt2sigma
Log Entry to Sigma Rule Converter
Fenrir
Simple Bash IOC Scanner
fg_log_parser
Fortigate Log Parser
Loki
Loki - Simple IOC and Incident Response Scanner
munin
Online hash checker for Virustotal and other services
osquery-configuration
A repository for using osquery for incident detection and response
sigma
Generic Signature Format for SIEM Systems
sysmon-config
Sysmon configuration file template with default high-quality event tracing
metalek's Repositories
metalek/BF-ELK
Burnham Forensics ELK Deployment Files
metalek/DeepBlueCLI
metalek/evt2sigma
Log Entry to Sigma Rule Converter
metalek/Fenrir
Simple Bash IOC Scanner
metalek/fg_log_parser
Fortigate Log Parser
metalek/Loki
Loki - Simple IOC and Incident Response Scanner
metalek/munin
Online hash checker for Virustotal and other services
metalek/osquery-configuration
A repository for using osquery for incident detection and response
metalek/sigma
Generic Signature Format for SIEM Systems
metalek/sysmon-config
Sysmon configuration file template with default high-quality event tracing
metalek/sysmon-dfir
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
metalek/SysmonHunter
An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
metalek/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response