Pinned Repositories
ADcheck_pwned
PowerShell script to check AD for matching emails in a long list of emails and then query haveibeenpwned.com for matching hits
AIL-framework
AIL framework - Analysis Information Leak framework
ATTACKmd
Mitre ATT&CK framework tactics and techniques in markdown format for best use in Obsidian
chepy
Chepy is a python lib/cli equivalent of the awesome CyberChef tool.
mhn
Modern Honey Network
MISP-QRADAR-REFERENCE-SET-BUILDER
Pulls IOCs from MISP and adds the to reference sets in QRadar
misp_automation
sec-vault-gen
Python utility to generate filesystem content for Obsidian.
sightingdb
SightingDB is a database for Sightings
syloktools's Repositories
syloktools/MISP-QRADAR-REFERENCE-SET-BUILDER
Pulls IOCs from MISP and adds the to reference sets in QRadar
syloktools/misp_automation
syloktools/ATTACKmd
Mitre ATT&CK framework tactics and techniques in markdown format for best use in Obsidian
syloktools/mhn
Modern Honey Network
syloktools/sec-vault-gen
Python utility to generate filesystem content for Obsidian.
syloktools/sightingdb
SightingDB is a database for Sightings
syloktools/AIL-framework
AIL framework - Analysis Information Leak framework
syloktools/chepy
Chepy is a python lib/cli equivalent of the awesome CyberChef tool.
syloktools/Cortex-Analyzers
Cortex Analyzers Repository
syloktools/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
syloktools/DetectionLabELK
DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
syloktools/DocIntel
Open Source Platform for storing, organizing, and searching documents related to cyber threats
syloktools/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
syloktools/MISP-maltego
Set of Maltego transforms to inferface with a MISP instance
syloktools/misp-modules
Modules for expansion services, import and export in MISP
syloktools/misp-playbooks
MISP Playbooks
syloktools/misp-taxonomies
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
syloktools/MISP-TIE
Integration between MISP platform and McAfee Threat Intelligence Exchange
syloktools/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
syloktools/misp-website
MISP website (hugo-based)
syloktools/misp-workflow-blueprints
Library of blueprints usable in MISP Workflows
syloktools/nviso-cti
syloktools/paradigm
Paradigm is an open source tool that looks at your network landscape and determines what is actually accessible via the internet.
syloktools/pptxurlcheck
Parse a PowerPoint PPTX file, extracting all URL's from notes and slides, and test for validity
syloktools/soc_workflow_app_ce
SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.
syloktools/sof-elk
Configuration files for the SOF-ELK VM, used in SANS FOR572
syloktools/sysmon-config
Sysmon configuration file template with default high-quality event tracing
syloktools/tbat
Threat Box Assessment Tool
syloktools/ThreatIntelligenceDiscordBot
Gets updates from various clearnet domains and ransomware threat actor domains
syloktools/Ultimate-Forensics-VM
Evolving directions on building the best Open Source Forensics VM