Stars
A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare and see what's been added with each update. Use these CSVs t…
Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
sadreck / Spartacus
Forked from Accenture/SpartacusSpartacus DLL/COM Hijacking Toolkit
Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs for malware analysis.
Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auto-completion to your preferred editor once it is configured.
Scirius is a web application for Suricata ruleset management and threat hunting.
The Security Analyst’s Guide to Suricata
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
Indicators of Compromises (IOC) of our various investigations
A zero dependency and customizable Python library for scanning Windows and Linux process memory.
Microsoft Threat Intelligence Security Tools
A curated list of GPT agents for cybersecurity
Transform Linux Audit logs for SIEM usage
Cobalt Strike HTTPS beaconing over Microsoft Graph API
Signatures and IoCs from public Volexity blog posts.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
A list of RMMs designed to be used in automation to build alerts
Documentation and scripts to properly enable Windows event logs.
Free training course offered at Hack Space Con 2023
This repo is about Active Directory Advanced Threat Hunting
Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations