Pinned Repositories
Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study. Doctor of Science Cybersecurity at Marymount University Dissertation by Xena Olsen.
Open-source-tools-for-CTI
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
Phish-Hunting
Phishing Analysis Tools
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
SocAnalystArsenal
Quick SOC L1 ticket structure
sysmon-config
Sysmon configuration file template with default high-quality event tracing
windows-hardening-scripts
Windows 10/11 hardening scripts
zer0lightning's Repositories
zer0lightning/sysmon-config
Sysmon configuration file template with default high-quality event tracing
zer0lightning/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
zer0lightning/windows-hardening-scripts
Windows 10/11 hardening scripts
zer0lightning/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
zer0lightning/EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study. Doctor of Science Cybersecurity at Marymount University Dissertation by Xena Olsen.
zer0lightning/Phish-Hunting
Phishing Analysis Tools
zer0lightning/active-directory-blueteam
zer0lightning/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
zer0lightning/awesome-tunneling
List of ngrok alternatives and other ngrok-like tunneling software and services. Focus on self-hosting.
zer0lightning/Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
zer0lightning/AwesomeXSS
Awesome XSS stuff
zer0lightning/BadBloodMini
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
zer0lightning/BurpSuiteSharpener
zer0lightning/CS7038-Malware-Analysis
Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)
zer0lightning/doh-cf-pages
DNS-over-HTTPS proxy on Cloudflare Pages
zer0lightning/doh-cf-workers
DNS-over-HTTPS proxy on Cloudflare Workers
zer0lightning/domain-blocklist
zer0lightning/EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
zer0lightning/grub-mod-setup_var
A modified grub allowing tweaking hidden BIOS settings.
zer0lightning/kali_p05t_1n5ta11
Some bash to make life easier after a new kali install..
zer0lightning/MicrosoftDefenderASR
zer0lightning/oracle-cloud-kasm-vps
zer0lightning/PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
zer0lightning/PowerShell-Blue-Team
Collection of PowerShell functinos and scripts a Blue Teamer might use
zer0lightning/Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
zer0lightning/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
zer0lightning/subdomains.sh
A wrapper around tools I use for subdomain enumeration on a given domain. This script is written with the aim to automate the workflow.
zer0lightning/Sysmon-Scripts
zer0lightning/WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
zer0lightning/warhorse