nasbench

Detection Engineering | Threat Hunting | Malware Analysis | Windows Internals | DFIR

@NextronSystems @SigmaHQ @magicsword-ioHAL

Pinned Repositories

MAL-CL
MAL-CL (Malicious Command-Line)
298 23 043
sigconverter.io
An opensource sigma conversion tool built using pysigma
Language:HTML79 5 1312
C2-Matrix-Indicators
This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
72 5 02
EVTX-ETW-Resources
Event Tracing For Windows (ETW) Resources
326 15 264
MindMaps
#ThreatHunting #DFIR #Malware #Detection Mind Maps
268 17 139
Misc-Research
A collection of tools, scripts and personal research
Language:Python93 5 014
SEDR-Internals
Symantec EDR Internals
25 4 06
SIGMA-Resources
Resources To Learn And Understand SIGMA Rules
160 9 014
sigma
Main Sigma Rule Repository
Language:Python7.6k 324 5752.1k

nasbench's Repositories

nasbench/EVTX-ETW-Resources
Event Tracing For Windows (ETW) Resources
326 15 264
nasbench/Misc-Research
A collection of tools, scripts and personal research
Language:Python93 5 014
nasbench/sigma
Generic Signature Format for SIEM Systems
Language:Python3 0 13
nasbench/DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
2
nasbench/sysmon-config
Sysmon configuration file template with default high-quality event tracing
2 0 0
nasbench/threathunters
Language:YARA2 0 02
nasbench/wil
Windows Implementation Library
Language:C++2 0 0
nasbench/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:C1 0 0
nasbench/LOLDrivers
Living Off The Land Drivers
Language:YARA1 0 0
nasbench/nasbench
1 1 0
nasbench/SEPparser
Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
Language:Python1 0 0
nasbench/sigmahq.github.io
Official Website Of The Sigma Project
Language:Vue1 0 0
nasbench/SXSEXP
Expand compressed files from WinSxS folder
1
nasbench/InsightEngineering
Hardcore Debugging
nasbench/license-list-XML
This is the repository for the master files that comprise the SPDX License List
Language:Makefile
nasbench/pySigma
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
Language:Python0 01
nasbench/pySigma-backend-elasticsearch
pySigma Elasticsearch backend
Language:Python
nasbench/pySigma-backend-QRadar-AQL
QRadar AQL backend for converting Sigma rules to QRadar AQL queries
nasbench/schemastore
A collection of JSON schema files including full API
Language:JavaScript0 01
nasbench/sensor-mappings-to-attack
Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help detect real-world adversary behaviors in their environments.
nasbench/sigconverter.io
A opensource sigma convertion tool built using pysigma
Language:HTML0 0
nasbench/sigma-cli
The Sigma command line interface based on pySigma
Language:Python0 0
nasbench/sigma-specification
Sigma rule specification
0 0
nasbench/SigmAIQ
nasbench/signature-base
Signature base for my scanner tools
Language:YARA0 0
nasbench/terminal
The new Windows Terminal and the original Windows console host, all in the same place!
Language:C++0 0
nasbench/ThreatHunting-Keywords-sigma-rules
Sigma detection rules for hunting with the threathunting-keywords project
Language:Python
nasbench/vscode-sigma
Language:TypeScript
nasbench/windows-itpro-docs
This repository is used for Windows client for IT Pro content on Microsoft Learn.
nasbench/WSL
Issues found on WSL
Language:PowerShell0 0