mwallau's Stars
Azure/Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
microsoft/Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
microsoft/Microsoft-Defender-for-Identity
Additional resources to improve customer experience with Microsoft Defender for Identity
MicrosoftLearning/AZ500-AzureSecurityTechnologies
Microsoft Azure Security Technologies
mandiant/sunburst_countermeasures
mandiant/red_team_tool_countermeasures
EricZimmerman/AppCompatCacheParser
AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10
EricZimmerman/AmcacheParser
Parses amcache.hve files, but with a twist!
EricZimmerman/MFTECmd
Parses $MFT from NTFS file systems
csababarta/ntdsxtract
Active Directory forensic framework
samratashok/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
corona-warn-app/cwa-server
Backend implementation for the Apple/Google exposure notification API.
corona-warn-app/cwa-documentation
Project overview, general documentation, and white papers. The CWA development ends on May 31, 2023. You still can warn other users until April 30, 2023. More information:
mandiant/flare-floss
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
sbousseaden/EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
philhagen/sof-elk
Configuration files for the SOF-ELK VM
OTRF/OSSEM
Open Source Security Events Metadata (OSSEM)
EbookFoundation/free-programming-books
:books: Freely available programming books
juiceman84/Fortigate_Content_Pack
Initial Revision
sans-blue-team/freq.py
Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy calculations. Uses character pair frequency analysis to determine the likelihood of tested strings of characters occurring.
mwallau/TeamPass
Collaborative Passwords Manager
microsoft/vscode
Visual Studio Code
Graylog2/graylog2-server
Free and open log management
mattermost/mattermost
Mattermost is an open source platform for secure collaboration across the entire software development lifecycle..
DanMcInerney/icebreaker
Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment
socprime/SigmaUI
SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
MicrosoftDocs/windows-itpro-docs
This repository is used for Windows client for IT Pro content on Microsoft Learn.
SigmaHQ/sigma
Main Sigma Rule Repository