Pinned Repositories
ClipboardMonitor
ClipboardMonitor is an application running in the background that tracks clipboard usage to detect PAN data.
ditjson
Exports all ntds.dit to a single JSON file.
eolchecker
EOL Checker is a simple application which gathers EOL information for software and hardware and allows you to query locally.
PANhunt
PANhunt searches for credit card numbers (PANs) in directories.
PolParser
A simple library to parse Registry.pol files with a working demo application.
slmgr-ps
A drop in replacement for slmgr script
yamldocs
JavaDoc or doxygen for YAML
zbalkan's Repositories
zbalkan/slmgr-ps
A drop in replacement for slmgr script
zbalkan/ditjson
Exports all ntds.dit to a single JSON file.
zbalkan/LAPS4LINUX
Local Administrator Password Solution (LAPS) - Implementation for Linux/Unix/macOS with additional features
zbalkan/nmap_scan
A python script that runs an nmap scan within a network subnet and writes the results to log file in a json format.
zbalkan/PANhunt
PANhunt searches for credit card numbers (PANs) in directories.
zbalkan/ADReplStatus
AD Replication Status Tool
zbalkan/AppLister
A Windows service that queries installed applications and publishes as a WMI instance
zbalkan/ClamAV.Managed
ClamAV bindings for the .NET and PowerShell. ClamAV.Managed is a library written in C# for the .NET Framework and Mono, providing managed bindings for the libclamav interface. It includes ClamAV.Managed.PowerShell, a set of PowerShell cmdlets for ClamAV scanning. It comes with sample code for building a GUI virus scanner application.
zbalkan/crypto_inventory
a RESTful API designed for securely managing cryptographic keys and key types
zbalkan/cvss4_calc
zbalkan/DnsServer
Technitium DNS Server
zbalkan/docs
This repository contains .NET Documentation.
zbalkan/dumb-password-rules
A compilation of sites with dumb password rules.
zbalkan/H.Pipes
A simple, easy to use, strongly-typed, async wrapper around .NET named pipes.
zbalkan/IntegrityService
FIM service for Windows
zbalkan/maven-wrapper
Apache Maven Wrapper
zbalkan/Public-AD-Scripts
AD Scripts
zbalkan/RDPKeepAlive
Simulates RDP activity to keep idle RDP sessions alive with minor tweaks
zbalkan/rulevis
A simple tool to visualize the Wazuh ruleset for analysis of connections. It may help finding loops, duplicates, and redundant rules.
zbalkan/scan_browser_extensions
This proof of concept application scans extensions on Mozilla Firefox, Google Chrome and Microsoft Edge.
zbalkan/serilog-sinks-syslog
Serilog sink that logs events to remote syslog servers using both UDP and TCP, and can also use POSIX libc syslog functions to write to the local syslog service on Linux systems. Supports both RFC3164 and RFC5424
zbalkan/sysmon-modular
A repository of sysmon configuration modules
zbalkan/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
zbalkan/wazuh-agent-1
Wazuh agent, the Wazuh agent for endpoints.
zbalkan/wazuh-devenv
The project utilizes of a wazuh-manager installed on WSL, allowing testing custom rules locally before moving to production.
zbalkan/wazuh-documentation
Wazuh - Project documentation
zbalkan/wazuh_test_generator
A tool to help detection engineers generate Wazuh rule tests either derived from INI files or Windows Event Log (EVTX) files. The test format uses Python's unittest. It is designed to accompany wazuh-devenv project.
zbalkan/wazuhevtx
A Python tool that parses EVTX files and converts them into JSON formatted logs mimicking Wazuh agent behavior in version 4.x. wazuhevtx is designed as a helper for wazuh-logtest tool.
zbalkan/wtfis
Passive hostname, domain and IP lookup tool for non-robots
zbalkan/zbalkan.github.io
Source code for personal page