rj-chap
IR Consultant. DFIR & Malware analyst. @cactuscon lead. @sansforensics Instructor & Author. @pluralsight Author. Comedy & BJJ dropout. Husband & father.
IRT Consulting LLCPhoenix, AZ
Pinned Repositories
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
BaselineTraining
Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk
CFWorkshop
Understanding and analyzing carrier files workshop repo
defcon_31_ad_good_bad_lolWut
EKWorkshop
BSidesLV 2015 Exploit Kit Analysis Workshop Files
ExposingNeutrino
Exposing the Neutrino EK: All the Naughty Bits (BSidesLV16)
NFWorkshop
Network Forensics Workshop Files
NFWorkshop16
Network Forensics Workshop Deux Files
ransomware_tips
Random tips and tricks RE: ransomware
rj-chap's Repositories
rj-chap/CFWorkshop
Understanding and analyzing carrier files workshop repo
rj-chap/EKWorkshop
BSidesLV 2015 Exploit Kit Analysis Workshop Files
rj-chap/NFWorkshop
Network Forensics Workshop Files
rj-chap/ExposingNeutrino
Exposing the Neutrino EK: All the Naughty Bits (BSidesLV16)
rj-chap/ransomware_tips
Random tips and tricks RE: ransomware
rj-chap/BaselineTraining
Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk
rj-chap/NFWorkshop16
Network Forensics Workshop Deux Files
rj-chap/awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
rj-chap/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
rj-chap/defcon_31_ad_good_bad_lolWut
rj-chap/SplunkQueries
The repo name says it all
rj-chap/labs_modern_malware_c2
DefCon 30 Workshop - Modern Malware Analysis
rj-chap/O365-ThreatHunting
Powershell scripts for identifying compromised Office 365 accounts/mailboxes
rj-chap/random_scripts
Random stuff, just farting around really
rj-chap/AllthingsTimesketch
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
rj-chap/cobaltstrike
Code and yara rules to detect and analyze Cobalt Strike
rj-chap/cobaltstrike-config-extractor
Cobalt Strike Beacon configuration extractor and parser.
rj-chap/elasticsearch
Free and Open, Distributed, RESTful Search Engine
rj-chap/LogonTracer
Investigate malicious Windows logon by visualizing and analyzing Windows event log
rj-chap/velociraptor-detections
YES. YES DANGIT!!
rj-chap/botsv1
Splunk Boss of the SOC v1 data set.
rj-chap/dnSpy
Unofficial revival of the well known .NET debugger and assembly editor, dnSpy
rj-chap/SKX
An open-source .NET remake of the NES version of Solomon's Key with new features, new levels, and an integrated level editor