cybersecops Goto Github PK
Name: Steve
Type: User
Twitter: 4n6_Steve
Name: Steve
Type: User
Twitter: 4n6_Steve
API, CLI & Web App for analyzing & finding a person's profile across social media \ websites (Detections are updated regularly)
Configuration files for the SOF-ELK VM, used in SANS FOR572
Resources related to the SolarWinds supply chain breach, connected to the FireEye breach
Comprehensive list of known attack vectors and common anti-patterns
The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.
Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.
A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.
Kubernetes-native security toolkit
A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-readable security playbooks such as CACAO Security Playbooks
Azure Red Team tool for graphing Azure and Azure Active Directory objects
SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data with optional output modules, such as MISP.
A python script developed to process Windows memory images based on triage type.
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
An example of using Syscalls in C# to get a meterpreter shell.
Sysmon configuration file template with default high-quality event tracing
TrustedSec Sysinternals Sysmon Community Guide
Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams.
AV/EDR evasion via direct system calls.
MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
Technical add-on for Splunk related to TheHive/Cortex from TheHive project
Kerberoast with ACL abuse capabilities
Threat Box Assessment Tool
Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a Microsoft 365 environment.
User enumeration with Microsoft Teams API
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.