VeryTallGuy's Projects
Small and highly portable detection tests based on MITRE's ATT&CK.
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
A curated list of awesome forensic analysis tools and resources
You didn't think I'd go and leave the blue team out, right?
Great List of Resources to Build an Enterprise Grade Home Lab
Solutions and notes for the Damn Vulnerable Web App pentesting tool, intended to be accurate as of 2Q 2019.
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
not yet
A list of free and open forensics analysis tools and other resources
GRR Rapid Response: remote live forensics for incident response
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
PowerShell framework to detect the existence of files matching SHA-256 hashes provided to the framework, located in file path(s) provided to the framework, using WindowsRM. This tool was built to be a flexible framework that can be tailored to fit many situations.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
PowerShell Remote Download Cradle Generator & Obfuscator
PowerShell Obfuscator
Collaborative Incident Response platform
Kusto Query Language
Different learning materials
The essential toolkit for reversing, malware analysis, and cracking
A collection of phishing samples for researchers and detection developers.
PowerShell - Rapid Response... For the incident responder in you!
Run PowerShell with rundll32. Bypass software restrictions.
Simple (relatively) things allowing you to dig a bit deeper than usual.
PowerShell Obfuscation Detection Framework
Sharing our knowledge and resources in the field of cyber security.
MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity
Repository of SentinelOne Deep Visibility queries.