repoman2020's Stars
KQLMSPress/definitive-guide-kql
Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
microsoft/EventLogExpert
themactep/thingino-firmware
Open-source firmware for Ingenic SoC IP cameras
CERT-Polska/Artemis
A modular vulnerability scanner with automatic report generation capabilities.
dafthack/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
microsoft/MSEntraIDProtectionGuidance
MS Entra ID Protection Guidance
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
nyxgeek/track_the_planet
DEFCON 31
PwC-IR/Business-Email-Compromise-Guide
The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Office 365 environment. Each step is intended to guide the process of identifying, collecting and analysing activity associated with BEC intrusions.
PwC-IR/Office-365-Extractor
The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
Permiso-io-tools/YetiHunter
Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the community.
geerlingguy/pi-nvr
Raspberry Pi NVR for home CCTV recording.
Syslifters/sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
securityjoes/MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
BushidoUK/Abused-Legitimate-Services
Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
microsoft/Security-101
8 Lessons, Kick-start Your Cybersecurity Learning.
tsale/TeleTracker
TeleTracker is a simple set of Python scripts designed for anyone investigating Telegram channels. It helps you send messages quickly and gather useful channel information easily.
rtr7/router7
router7 is a small home internet router completely written in Go. It is implemented as a gokrazy appliance.
KC7-Foundation/kc7
A cybersecurity game in Azure Data Explorer
vz-risk/VCDB
VERIS Community Database
MatrixTM/MHDDoS
Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods
fkie-cad/COMIDDS
A comprehensive survey of datasets for research in host-based and/or network-based intrusion detection, with a focus on enterprise networks
simsong/bulk_extractor
This is the development tree. Production downloads are at:
elastic/detection-rules
maybe-finance/maybe
The OS for your personal finances
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
DerDanilo/proxmox-stuff
This is a collection of stuff that I wrote for Proxmox.
StevenBlack/hosts
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
chadmayfield/my-pihole-blocklists
Create custom pi-hole blocklists