Pinned Repositories
active-directory-pentest
Advanced-Process-Injection-Workshop
CobaltStrike-Toolset
Aggressor Script, Kits, Malleable C2 Profiles, External C2 and so on
dashboards-reporting
ebpf
Elastic's eBPF
GMSAPasswordReader
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
logstash-input-jdbc
Logstash Plugin for JDBC Inputs
opensearch-build-libraries
PCAP-ATTACK
PCAP Samples for Different Post Exploitation Techniques
theomilan3's Repositories
theomilan3/terraform-provider-ec
Terraform provider for the Elasticsearch Service and Elastic Cloud Enterprise
theomilan3/dashboards-observability
Visualize and explore your logs, traces and metrics data in OpenSearch Dashboards
theomilan3/dashboards-query-workbench
The OpenSearch Dashboards Query Workbench enables you to query your OpenSearch data using either SQL or PPL
theomilan3/detection-rules
Rules for Elastic Security's detection engine
theomilan3/elastic-integration-corpus-generator-tool
Command line tool used for generating events corpus dynamically given a specific integration
theomilan3/endpoint-package
Repo for developing the endpoint package
theomilan3/FalconFriday
Hunting queries and detections
theomilan3/gMSADumper
Lists who can read any gMSA password blobs and parses them if the current user has access.
theomilan3/go-ucfg
Golang universal configuration
theomilan3/industry
This repository provides holistic architecture design and reference implementation for industry cloud based on proven success of large scale deployments and at-scale adoption with customers and partners.
theomilan3/logstash-filter-elastic_integration
Placeholder for the Elastic Integrations filter for Logstash, which will run Ingest Pipelines
theomilan3/logstash-filter-grok
Grok plugin to parse unstructured (log) data into something structured.
theomilan3/logstash-input-file
theomilan3/loki
Like Prometheus, but for logs.
theomilan3/notifications
Notifications plugin for OpenSearch enables other plugins to send notifications via Email, Slack, Amazon Chime, Custom web-hook etc channels
theomilan3/performance-analyzer
📈 Get detailed performance metrics from your cluster independently of the Java Virtual Machine (JVM)
theomilan3/php-src
The PHP Interpreter
theomilan3/protections-artifacts
Elastic Security detection content for Endpoint
theomilan3/PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
theomilan3/pyGPOAbuse
Partial python implementation of SharpGPOAbuse
theomilan3/reporting-cli
theomilan3/SC-200T00A-Microsoft-Security-Operations-Analyst
theomilan3/security-analytics-dashboards-plugin
Front end (UI) plugin to support security-analytics
theomilan3/SecurityCopilot
theomilan3/SIGMA-detection-rules
Set of SIGMA rules (>320) mapped to MITRE Att@k tactic and techniques
theomilan3/Sigma-Rules
Rules generated from our investigations.
theomilan3/skills
theomilan3/UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
theomilan3/Uncoder_IO
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
theomilan3/website
Kubernetes website and documentation repo: