mf1d3l

Pinned Repositories

APT_REPORT
Interesting APT Report Collection And Some Special IOC
Language:Python00
auditd
Best Practice Auditd Configuration
00
awesome-incident-response
A curated list of tools for incident response
01
awesome-lists
Awesome Security lists for SOC/CERT/CTI
Language:Python00
Awesome-Mainframe-Hacking
00
pySigma-backend-splunk
pySigma Splunk backend
Language:Python00
Samples
00
sigma
Generic Signature Format for SIEM Systems
Language:Python0 0 00
Splunk4DFIR
Harness the power of Splunk for your investigations
Language:Shell83 2 210

mf1d3l's Repositories

mf1d3l/Splunk4DFIR
Harness the power of Splunk for your investigations
Language:Shell83 2 210
mf1d3l/APT_REPORT
Interesting APT Report Collection And Some Special IOC
Language:Python00
mf1d3l/awesome-lists
Awesome Security lists for SOC/CERT/CTI
Language:Python00
mf1d3l/Awesome-Mainframe-Hacking
00
mf1d3l/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
Language:HTML0 0 00
mf1d3l/evtx
A Fast (and safe) parser for the Windows XML Event Log (EVTX) format
Language:Rust0 0 00
mf1d3l/EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
Language:HTML00
mf1d3l/pySigma-backend-splunk
pySigma Splunk backend
Language:Python00
mf1d3l/sigma
Generic Signature Format for SIEM Systems
Language:Python0 0 00
mf1d3l/docker-splunk
Splunk Docker GitHub Repository
mf1d3l/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Language:Python0 0
mf1d3l/Havoc
The Havoc Framework.
Language:Go0 0
mf1d3l/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
mf1d3l/InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
mf1d3l/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
mf1d3l/LOLDrivers
Living Off The Land Drivers
mf1d3l/MemProcFS
MemProcFS
mf1d3l/mimikatz
A little tool to play with Windows security
mf1d3l/nginx-ultimate-bad-bot-blocker
Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
mf1d3l/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Language:Python
mf1d3l/PowerSharpPack
mf1d3l/protections-artifacts
Elastic Security detection content for Endpoint
mf1d3l/pySigma
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
Language:Python
mf1d3l/rules
Repository of yara rules
Language:YARA0 0
mf1d3l/sigma-cli
The Sigma command line interface based on pySigma
mf1d3l/sliver
Adversary Emulation Framework
mf1d3l/sysmon-modular
A repository of sysmon configuration modules
mf1d3l/The-Hacker-Recipes
This project is aimed at freely providing technical guides on various hacking topics: Active Directory services, web services, servers, intelligence gathering, physical intrusion, phishing, mobile apps, iot, social engineering, etc.
mf1d3l/ThreatHunting-Keywords
Awesome list of keywords and artefacts for Threat Hunting sessions
mf1d3l/uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.