Pinned Repositories
AD-control-paths
Active Directory Control Paths auditing and graphing tools
alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
algo
Set up a personal IPSEC VPN in the cloud
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
AutoTTP
Automated Tactics Techniques & Procedures
awesome-forensics
A curated list of awesome forensic analysis tools and resources
awesome-incident-response
A curated list of tools for incident response
yeahbytes's Repositories
yeahbytes/algo
Set up a personal IPSEC VPN in the cloud
yeahbytes/APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
yeahbytes/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
yeahbytes/awesome-forensics
A curated list of awesome forensic analysis tools and resources
yeahbytes/awesome-incident-response
A curated list of tools for incident response
yeahbytes/Awesome-Red-Teaming
List of Awesome Red Teaming Resources
yeahbytes/awesome-threat-detection
A curated list of awesome threat detection and hunting resources
yeahbytes/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
yeahbytes/checkweb
Identificador de Seguridad Web para Pentester
yeahbytes/ctfr
Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
yeahbytes/DetectionLab
Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
yeahbytes/elevation-of-privacy
Privacy Cards for Software Developers
yeahbytes/GeoLogonalyzer
GeoLogonalyzer is a utility to analyze remote access logs for anomalies such as travel feasibility and data center sources.
yeahbytes/GPON
Exploit for Remote Code Execution on GPON home routers (CVE-2018-10562) written in Python. Initially disclosed by VPNMentor (https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/), kudos for their work.
yeahbytes/hacker101
Hacker101
yeahbytes/LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
yeahbytes/LinkFinder
A python script that finds endpoints in JavaScript files
yeahbytes/netdata
Get control of your servers. Simple. Effective. Awesome! https://my-netdata.io/
yeahbytes/opensnitch
OpenSnitch is a GNU/Linux port of the Little Snitch application firewall.
yeahbytes/PcapXray
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
yeahbytes/S3Scanner
Scan for open S3 buckets and dump
yeahbytes/streisand
Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, and a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
yeahbytes/Talk_Decks
Slide Decks for the Majority of my Talks
yeahbytes/ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
yeahbytes/THRecon
Threat Hunting Reconnaissance Toolkit
yeahbytes/torflow
Data flow in the Tor network
yeahbytes/twint
An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
yeahbytes/velociraptor
Digging Deeper....
yeahbytes/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response
yeahbytes/Windows10Debloater
Script to remove Windows 10 bloatware.