Pinned Repositories
ansible-tdd-development
Testing TDD Approach for creating ansible roles
ansible_timesketch
Ansible Playbook for production ready deployment of latest timesketch head
bloom
A highly efficient Bloom filter library and command line tool written in Go.
covid19-yara-rules
Yara Rule repository generated using YarGen from various OSINT sources to figth COVID19 malware campaigns
forensic-bloom-filters
This repository holds bloom filters that can be generated from various sources like NIST, MISP, etc. for quick lookups of hash sums
lnav-thor
LNAV log formats for viewing THOR and SPARK log files.
spyre
simple YARA-based IOC scanner
thorlite2dfirtrack
Create dfirtrack entries from thor lite scan reports
n3x77's Repositories
n3x77/ansible_timesketch
Ansible Playbook for production ready deployment of latest timesketch head
n3x77/covid19-yara-rules
Yara Rule repository generated using YarGen from various OSINT sources to figth COVID19 malware campaigns
n3x77/bloom
A highly efficient Bloom filter library and command line tool written in Go.
n3x77/forensic-bloom-filters
This repository holds bloom filters that can be generated from various sources like NIST, MISP, etc. for quick lookups of hash sums
n3x77/thorlite2dfirtrack
Create dfirtrack entries from thor lite scan reports
n3x77/ansible-tdd-development
Testing TDD Approach for creating ansible roles
n3x77/appcompatprocessor
"Evolving AppCompat/AmCache data analysis beyond grep"
n3x77/APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
n3x77/awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
n3x77/CAPEv2
Malware Configuration And Payload Extraction
n3x77/connectors
OpenCTI connectors
n3x77/covid19-malware-sample-utils
Utilities for analysis and gathering of covid19 related malware samples
n3x77/dfirtrack
DFIRTrack - The Incident Response Tracking Application
n3x77/dfirtrack-api-python-client
A Python client library for accessing DFIRTracks API using the OpenAPI-Standard
n3x77/dfirtrackapi
A go client library for accessing DFIRTracks API using the OpenAPI-Standard
n3x77/docker_jenkins
n3x77/GoReSym
Go symbol recovery tool
n3x77/helper-scripts
Litte helpers in various scripting languages
n3x77/jenkins-ansible-testing
n3x77/malboxes
Builds malware analysis Windows VMs so that you don't have to.
n3x77/munin
Online hash checker for Virustotal and other services
n3x77/python-workshop
Files for programming exercises
n3x77/Shuffle-apps
Apps to be used for Shuffle SOAR
n3x77/signature-base
Signature base for my scanner tools
n3x77/test
test
n3x77/timesketch
Collaborative forensic timeline analysis
n3x77/turbinia
Automation and Scaling of Digital Forensics Tools
n3x77/udemy-recipe-app-api
Recipe app api source code
n3x77/vagrant-cape
Vagrantfile that uses ansible to deploy CAPE Sandbox together with KVM
n3x77/vagrant_ansibe_testing
Vagrantfile that spins up Ubuntu Box and uses Ansible for deployment