phage-nz/infosec-bazaar

A collection of infosec related scripts and information.

       .__                           
______ |  |__ _____     ____   ____  
\____ \|  |  \\__  \   / ___\_/ __ \ 
|  |_> >   Y  \/ __ \_/ /_/  >  ___/ 
|   __/|___|  (____  /\___  / \___  >
|__|        \/     \//_____/      \/ 

Twitter: @phage_nz
GitHub: phage-nz
Blog: https://phage.nz

https://github.com/phage-nz/infosec-bazaar

A collection of infosec-related scripts and information.

Current Inventory

\doc-maker

• CTI documentation creation scripts.

\emulation

• cradle.ps1 - PowerShell cradle script to download an execute malware samples.
• readme.md - a collection of Adversary Emulation resources.
• prepare-server.sh - Adversary emulation tooling deployment script.

\honeypots

• \linux - Cowrie installation documentation and Azure Sentinel integration.
• \spamtrap - Spam traps setup using Mail-in-a-Box and Shiva.
• \windows - Information on setting up a Windows honeypot.

\sysmon

• sysmonconfig.xml - ATT&CK mapped Sysmon configuration.

Other Items

• Threat Intelligence Learning

RSS sources:

• Geopolitical News
• Infosec Reading
• Vulnerability Tracking

Twitter lists:

• Defensive Intel
• Geopolitical Intel
• Offensive Intel